论文信息 - A new method for impossible differential cryptanalysis of 8-round advanced encryption standard

A new method for impossible differential cryptanalysis of 8-round advanced encryption standard

This paper first presents an impossible differential property for 5-round Advanced Encryption Standard (AES) with high probability. Based on the property and the impossible differential cryptanalytic method for the 5-round AES, a new method is proposed for cryptanalyzing the 8-round AES-192 and AES-256. This attack on the reduced 8-round AES-192 demands 2121 words of memory, and performs 2148 8-round AES-192 encryptions. This attack on the reduced 8-round AES-256 demands 2153 words of memory, and performs 2180 8-round AES-256 encryptions. Furthermore, both AES-192 and AES-256 require about 298 chosen plain-texts for this attack, and have the same probability that is only 23 to fail to recover the secret key.

Chen Jie | Hu Yupu | Wei Yongzhuang

[1] Mohammad Umar Siddiqi,et al. Generalised impossible differentials of advanced encryption standard , 2001 .

[2] Chen Jie,et al. Impossible differential cryptanalysis of Advanced Encryption Standard , 2007 .

[3] Jung Hee Cheon,et al. Improved Impossible Differential Cryptanalysis of Rijndael and Crypton , 2001, ICISC.

[4] Raphael C.-W. Phan,et al. Impossible differential cryptanalysis of 7-round Advanced Encryption Standard (AES) , 2004, Inf. Process. Lett..

[5] Eli Biham,et al. The Rectangle Attack - Rectangling the Serpent , 2001, EUROCRYPT.

[6] David A. Wagner,et al. The Boomerang Attack , 1999, FSE.

[7] Vincent Rijmen,et al. The Block Cipher Square , 1997, FSE.

[8] Elaine B. Barker,et al. Report on the Development of the Advanced Encryption Standard (AES) , 2001, Journal of research of the National Institute of Standards and Technology.

[9] Josef Pieprzyk,et al. Cryptanalysis of Block Ciphers with Overdefined Systems of Equations , 2002, ASIACRYPT.