Miss in the Middle Attacks on IDEA, Khufu and Khafre

In a recent paper we developed a new cryptanalytic technique based on impossible diierentials, and used it to attack the Skip-jack encryption algorithm reduced from 32 to 31 rounds. In this paper we describe the application of this technique to the block ciphers IDEA, Khufu and Khafre. In the case of IDEA, the new attacks have smaller complexities and cover more rounds than the best currently known attacks. This demonstrates the power of the new cryptanalytic technique, shows that it is applicable to a larger class of cryptosystems, and develops new technical tools for applying it in new situations.

[1]  Willi Meier,et al.  On the Security of the IDEA Block Cipher , 1994, EUROCRYPT.

[2]  P ? ? ? ? ? ? ? % ? ? ? ? , 1991 .

[3]  Vincent Rijmen,et al.  Two Attacks on Reduced IDEA (Extended Abstract) , 1997 .

[4]  Xuejia Lai,et al.  On the design and security of block ciphers , 1992 .

[5]  Thomas Jakobson,et al.  Cryptanalysis of Block Ciphers with Probabilistic Non-linear Relations of Low Degree , 1998, CRYPTO.

[6]  G. G. Stokes "J." , 1890, The New Yale Book of Quotations.

[7]  Joan Daemen Cryptanalysis of 2,5 Rounds of IDEA (Extended Abstract) , 1993 .

[8]  Ralph C. Merkle,et al.  Fast Software Encryption Functions , 1990, CRYPTO.

[9]  Eyal Kushilevitz,et al.  From Differential Cryptanalysis to Ciphertext-Only Attacks , 1998, CRYPTO.

[10]  Philip Hawkes,et al.  On Applying Linear Cryptanalysis to IDEA , 1996, ASIACRYPT.

[11]  Philip Hawkes,et al.  Differential-Linear Weak Key Classes of IDEA , 1998, EUROCRYPT.

[12]  Xuejia Lai,et al.  Markov Ciphers and Differential Cryptanalysis , 1991, EUROCRYPT.

[13]  Joos Vandewalle,et al.  Weak Keys for IDEA , 1994, CRYPTO.

[14]  Henri Gilbert,et al.  A Chosen Plaintext Attack of the 16-round Khufu Cryptosystem , 1994, CRYPTO.

[15]  Xuejia Lai,et al.  A Proposal for a New Block Encryption Standard , 1991, EUROCRYPT.

[16]  Toshinobu Kaneko,et al.  Improving the Higher Order Differential Attack and Cryptanalysis of the KN Cipher , 1997, ISW.

[17]  Mitsuru Matsui,et al.  New Structure of Block Ciphers with Provable Security against Differential and Linear Cryptanalysis , 1996, FSE.

[18]  David Chaum,et al.  Advances in Cryptology: Proceedings Of Crypto 83 , 2012 .