Cryptanalysis of Reduced-Round KLEIN Block Cipher

KLEIN is a lightweight block cipher proposed in RFIDSec 2011 which combines 4-bit S-box with Rijndael's byte-oriented MixColumn. In this paper, we first investigate the security of KLEIN against truncated differential analysis. We construct a 6-round truncated differential distinguisher based on a careful observation about the characteristic of KLEIN round function. With the help of this new distinguisher, we give a truncated differential analysis of 8-round KLEIN-64 with the data complexity of 232 and time complexity of 246.8 encryptions. Furthermore, we study the security of KLEIN against integral analysis and present an integral analysis of 7-round KLEIN-64 and 8-round KLEIN-80 using a 5-round distinguisher, which is constructed by utilizing higher-order integral and higher-order differential properties.

[1]  Vincent Rijmen,et al.  The Design of Rijndael , 2002, Information Security and Cryptography.

[2]  Vincent Rijmen,et al.  The Block Cipher Square , 1997, FSE.

[3]  Matt Henricksen,et al.  Bit-Pattern Based Integral Attack , 2008, FSE.

[4]  David A. Wagner,et al.  Truncated Differentials and Skipjack , 1999, CRYPTO.

[5]  Lars R. Knudsen,et al.  Truncated Differentials of SAFER , 1996, FSE.

[6]  Christof Paar,et al.  New Lightweight DES Variants , 2007, FSE.

[7]  David A. Wagner,et al.  Integral Cryptanalysis , 2002, FSE.

[8]  Yee Wei Law,et al.  KLEIN: A New Family of Lightweight Block Ciphers , 2010, RFIDSec.

[9]  Jongsung Kim,et al.  HIGHT: A New Block Cipher Suitable for Low-Resource Device , 2006, CHES.

[10]  Jean-Jacques Quisquater,et al.  SEA: A Scalable Encryption Algorithm for Small Embedded Applications , 2006, CARDIS.

[11]  Jongsung Kim,et al.  Related-Key Rectangle Attacks on Reduced AES-192 and AES-256 , 2007, FSE.

[12]  Dengguo Feng,et al.  New Results on Impossible Differential Cryptanalysis of Reduced AES , 2007, ICISC.

[13]  Babak Sadeghiyan,et al.  MIBS: A New Lightweight Block Cipher , 2009, CANS.

[14]  Kritika Jain,et al.  TWIS - A Lightweight Block Cipher , 2009, ICISS.

[15]  Christophe De Cannière,et al.  KATAN and KTANTAN - A Family of Small and Efficient Hardware-Oriented Block Ciphers , 2009, CHES.

[16]  Andrey Bogdanov,et al.  PRESENT: An Ultra-Lightweight Block Cipher , 2007, CHES.

[17]  Yanjun Li,et al.  Integral Attacks on Reduced-Round ARIA Block Cipher , 2010, ISPEC.

[18]  Bruce Schneier,et al.  Improved Cryptanalysis of Rijndael , 2000, FSE.

[19]  Matthew J. B. Robshaw,et al.  Searching for Compact Algorithms: cgen , 2006, VIETCRYPT.

[20]  Vincent Rijmen,et al.  The Design of Rijndael: AES - The Advanced Encryption Standard , 2002 .

[21]  Xuejia Lai Higher Order Derivatives and Differential Cryptanalysis , 1994 .

[22]  Lars R. Knudsen,et al.  Truncated and Higher Order Differentials , 1994, FSE.

[23]  Wenling Wu,et al.  LBlock: A Lightweight Block Cipher , 2011, ACNS.

[24]  Chae Hoon Lim,et al.  mCrypton - A Lightweight Block Cipher for Security of Low-Cost RFID Tags and Sensors , 2005, WISA.