论文信息 - The Improved 16th-Order Differential Attack on 10- Round Variant of Block Cipher PRESENT

The Improved 16th-Order Differential Attack on 10- Round Variant of Block Cipher PRESENT

We study the improved 16th-order differential attack on 10-round variant of PRESENT that is a 64-bit block cipher supporting 80-bit and 128-bit secret keys proposed by Bogdanov et al. in 2007. Higher-order differential attack is one of the cryptanalytic techniques exploiting a low algebraic degree of an encryption/decryption function. In 2013 Wu et al. reported the 16th-order differential attack on 10-round variant of PRESENT, which requires 222.4 pairs of plaintext and ciphertext, and 299.3 times of encryption operation. In this article we adopt partial sum technique to solve an attack equation, which leads to low computational complexity. As a result we show that 10-round variant of PRESENT can be attacked with 222.3 pairs of plaintext and ciphertext, and 281.3 times of encryption operation.

[1] David A. Wagner,et al. Integral Cryptanalysis , 2002, FSE.

[2] Jianying Zhou,et al. Information and Communications Security , 2013, Lecture Notes in Computer Science.

[3] Bruce Schneier,et al. Improved Cryptanalysis of Rijndael , 2000, FSE.

[4] Mingsheng Wang,et al. Integral Attacks on Reduced-Round PRESENT , 2013, ICICS.

[5] Stefan Lucks. The Saturation Attack - A Bait for Twofish , 2000, FSE.

[6] Xuejia Lai. Higher Order Derivatives and Differential Cryptanalysis , 1994 .

[7] Ingrid Verbauwhede,et al. Cryptographic Hardware and Embedded Systems - CHES 2007, 9th International Workshop, Vienna, Austria, September 10-13, 2007, Proceedings , 2007, CHES.

[8] Gerhard Goos,et al. Fast Software Encryption , 2001, Lecture Notes in Computer Science.

[9] Andrey Bogdanov,et al. PRESENT: An Ultra-Lightweight Block Cipher , 2007, CHES.