|
|
|
|
Cryptanalysis of some first round CAESAR candidates
|
|
|
|
|
|
|
|
نویسنده
|
alizadeh javad ,aref mohammad reza ,bagheri nasour ,rahimi alireza ,sadeghi hassan
|
|
منبع
|
the isc international journal of information security - 2015 - دوره : 7 - شماره : 2 - صفحه:127 -134
|
|
چکیده
|
Αεs _ cmccv₁, αvαlαnchev₁, clοcv₁, and silcv₁ are four candidates of the first round of caesar. clοcv₁ is presented in fse 2014 and silcv₁ is designed upon it with the aim of optimizing the hardware implementation cost. in this paper, structural weaknesses of these candidates are studied. we present distinguishing attacks against αes _ cmccv₁ with the complexity of two queries and the success probability of almost 1, and distinguishing attacks on clοcv₁ and silcv₁ with the complexity of ο (2^n/2) queries and the success probability of 0.63, in which n is bit length of message blocks. in addition, a forgery attack is presented against αvαlαnchev₁ which requires only one query and has the success probability of 1. the attacks reveal weaknesses in the structure of these first round candidates and inaccuracy of their security claims.
|
|
کلیدواژه
|
Authenticated Encryption; CAESAR; ΑES _ CMCCv₁; ΑVΑLΑNCHEv₁; CLΟCv₁; SILCv₁; Distinguishing Attack; Forgery Attack
|
|
آدرس
|
imam hossein university, faculty and research center of communication and information technology, ایران, sharif university of technology, information systems and security lab (issl), Iran., shahid rajaee teachers training university, electrical engineering department, ایران. institute for research in fundamental sciences (ipm), school of computer science, ایران, imam hossein university, faculty and research center of communication and information technology, ایران, university of qom, faculty of science, department of mathematics, Iran.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Authors
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|