Cryptanalysis of 'nonlinear-parity circuits' proposed at Crypto '90
暂无分享,去创建一个
Koyama and Terada (1991) proposed a family of cryptographic functions for application to symmetric block ciphers. The authors show that this family of circuits is affine over GF(2). More explicitly, for any specific key K, the ciphertext Y is related to the plaintext X by the simple affine relation Y=M/sub K/X/spl otimes/d/sub K/ where M/sub K/ is an n/spl times/n non singular binary matrix and d/sub K/ is an n/spl times/1 binary vector n where n is the block length of the cipher. This renders this family of ciphers completely insecure as it can be broken with only n+1 linearly independent plaintext blocks and their corresponding ciphertext blocks.
[1] Stafford E. Tavares,et al. On the Design of S-Boxes , 1985, CRYPTO.
[2] S. Jamaloddin Golestani,et al. A self-clocked fair queueing scheme for broadband applications , 1994, Proceedings of INFOCOM '94 Conference on Computer Communications.