Nonlinear Approximations in Cryptanalysis Revisited

Nonlinear Approximations in Cryptanalysis Revisited

This work studies deterministic and non-deterministic nonlinear approximations for cryptanalysis of block ciphers and cryptographic permutations and embeds it into the well-understood framework of linear cryptanalysis. For a deterministic (i.e., with correlation ±1) nonlinear approximation we show...

Full description

Bibliographic Details
Main Authors: Christof Beierle, Anne Canteaut, Gregor Leander
Format: Article
Language:English
Published: Ruhr-Universität Bochum 2018-12-01
Series:IACR Transactions on Symmetric Cryptology
Subjects:
Block cipher
Nonlinear invariant
Invariant subspace attack
Nonlinear approximations
Linear cryptanalysis
Midori
Online Access:https://tosc.iacr.org/index.php/ToSC/article/view/7362
id doaj-e0de1ce357b74c148ed3351fa8cedc3b
record_format Article
spelling doaj-e0de1ce357b74c148ed3351fa8cedc3b2021-03-02T04:25:34ZengRuhr-Universität BochumIACR Transactions on Symmetric Cryptology2519-173X2018-12-012018410.13154/tosc.v2018.i4.80-101Nonlinear Approximations in Cryptanalysis RevisitedChristof Beierle0Anne Canteaut1Gregor Leander2SnT, University of LuxembourgInria, ParisHorst Görtz Institute for IT Security, Ruhr-Universität Bochum This work studies deterministic and non-deterministic nonlinear approximations for cryptanalysis of block ciphers and cryptographic permutations and embeds it into the well-understood framework of linear cryptanalysis. For a deterministic (i.e., with correlation ±1) nonlinear approximation we show that in many cases, such a nonlinear approximation implies the existence of a highly-biased linear approximation. For non-deterministic nonlinear approximations, by transforming the cipher under consideration by conjugating each keyed instance with a fixed permutation, we are able to transfer many methods from linear cryptanalysis to the nonlinear case. Using this framework we in particular show that there exist ciphers for which some transformed versions are significantly weaker with regard to linear cryptanalysis than their original counterparts. https://tosc.iacr.org/index.php/ToSC/article/view/7362Block cipherNonlinear invariantInvariant subspace attackNonlinear approximationsLinear cryptanalysisMidori
collection DOAJ
language English
format Article
sources DOAJ
author Christof Beierle
Anne Canteaut
Gregor Leander
spellingShingle Christof Beierle
Anne Canteaut
Gregor Leander
Nonlinear Approximations in Cryptanalysis Revisited
IACR Transactions on Symmetric Cryptology
Block cipher
Nonlinear invariant
Invariant subspace attack
Nonlinear approximations
Linear cryptanalysis
Midori
author_facet Christof Beierle
Anne Canteaut
Gregor Leander
author_sort Christof Beierle
title Nonlinear Approximations in Cryptanalysis Revisited
title_short Nonlinear Approximations in Cryptanalysis Revisited
title_full Nonlinear Approximations in Cryptanalysis Revisited
title_fullStr Nonlinear Approximations in Cryptanalysis Revisited
title_full_unstemmed Nonlinear Approximations in Cryptanalysis Revisited
title_sort nonlinear approximations in cryptanalysis revisited
publisher Ruhr-Universität Bochum
series IACR Transactions on Symmetric Cryptology
issn 2519-173X
publishDate 2018-12-01
description This work studies deterministic and non-deterministic nonlinear approximations for cryptanalysis of block ciphers and cryptographic permutations and embeds it into the well-understood framework of linear cryptanalysis. For a deterministic (i.e., with correlation ±1) nonlinear approximation we show that in many cases, such a nonlinear approximation implies the existence of a highly-biased linear approximation. For non-deterministic nonlinear approximations, by transforming the cipher under consideration by conjugating each keyed instance with a fixed permutation, we are able to transfer many methods from linear cryptanalysis to the nonlinear case. Using this framework we in particular show that there exist ciphers for which some transformed versions are significantly weaker with regard to linear cryptanalysis than their original counterparts.
topic Block cipher
Nonlinear invariant
Invariant subspace attack
Nonlinear approximations
Linear cryptanalysis
Midori
url https://tosc.iacr.org/index.php/ToSC/article/view/7362
work_keys_str_mv AT christofbeierle nonlinearapproximationsincryptanalysisrevisited
AT annecanteaut nonlinearapproximationsincryptanalysisrevisited
AT gregorleander nonlinearapproximationsincryptanalysisrevisited
_version_ 1724243209328001024

Similar Items