LBlock算法的相关密钥不可能飞来去器分析

doi:10.11959/j.issn.1000-436x.2017101

通信学报 ›› 2017, Vol. 38 ›› Issue (5): 66-71.doi: 10.11959/j.issn.1000-436x.2017101

LBlock算法的相关密钥不可能飞来去器分析

谢敏,牟彦利

西安电子科技大学综合业务网理论及关键技术国家重点实验室，陕西西安 710071

修回日期:2017-03-16 出版日期:2017-05-01 发布日期:2017-05-28
作者简介:谢敏（1976-），女，湖南桃源人，博士，西安电子科技大学副教授，主要研究方向为编码和密码。|牟彦利（1990-），女，河北沧州人，西安电子科技大学硕士生，主要研究方向为分组密码算法分析。
基金资助:
国家自然科学基金资助项目(61373170);国家自然科学基金资助项目(U0835004);国家自然科学基金资助项目(U1536202);国家111创新引智基金资助项目(B08038)

Related-key impossible boomerang cryptanalysis on LBlock

Min XIE,Yan-li MU

State Key Laboratory of Integrated Services Networks,Xidian University,Xi’an 710071,China

Revised:2017-03-16 Online:2017-05-01 Published:2017-05-28
Supported by:
The National Natural Science Foundation of China(61373170);The National Natural Science Foundation of China(U0835004);The National Natural Science Foundation of China(U1536202);The 111 Project of China(B08038)

摘要/Abstract

摘要：

研究了相关密钥不可能飞来去器分析方法及轻量级分组密码算法 LBlock 在该分析方法下的安全性。将不可能飞来去器分析方法和相关密钥分析方法相结合，针对22轮LBlock给出了新的攻击。构造了15轮的相关密钥不可能飞来去器区分器，通过向前扩展3轮，向后扩展4轮，成功攻击了22轮LBlock。该攻击的数据复杂度仅为2^51.3个明文，计算复杂度为2^71.54次22轮加密。与已有结果相比，攻击的数据复杂度和计算复杂度均有明显下降。

关键词: LBlock算法, 轻量级分组密码, 相关密钥, 不可能飞来去器

Abstract:

The related-key impossible boomerang cryptanalysis and the strength of the lightweight block cipher LBlock against this method were investigated.A new attack on 22-round LBlock was presented combining impossible boomerang attacks with related-key attacks.A 15-round related-key impossible boomerang distinguisher was constructed.Based on the new distinguisher,an attack on 22-round LBlock was mounted successfully by concatenating 3-round to the beginning and 4-round to the end.The attack on 22-round LBlock required data complexity of only 2^51.3plaintexts and computational complexity of about 2 ^71.5422-round encryptions.Compared with published cryptanalysis results on 22-round LBlock,proposed attack has great advantages on data and computational complexities.

Key words: LBlock algorithm, lightweight block cipher, related-key, impossible boomerang

中图分类号:

TN918.1

谢敏,牟彦利. LBlock算法的相关密钥不可能飞来去器分析[J]. 通信学报, 2017, 38(5): 66-71.

Min XIE,Yan-li MU. Related-key impossible boomerang cryptanalysis on LBlock[J]. Journal on Communications, 2017, 38(5): 66-71.

图/表 8

图1

图2

图3

表1

图4

图5

图6

表2

参考文献 21

[1]	IZADI M , SADEGHIYAN B , SADEGHIAN S S ,et al. MIBS:a new lightweight block cipher[C]// 8th International Conference on Cryptology and Network Security-CANS 2009. Kanazawa,Japan, 2009: 334-348.
[2]	WU W L , ZHANG L . LBlock:a lightweight block cipher[C]// 9th International Conference on Applied Cryptography and Network Security-ACNS 2011. Nerja,Spain, 2011: 327-344.
[3]	OJHA S K , KUMAR N , JAIN K ,et al. TWIS:a lightweight block cipher[C]// 5th International Conference on Information Systems Security – ICISS 2009. Kolkata,India, 2009: 280-291.
[4]	WU W L , ZHANG L , YU X L . The DBlock family of block ciphers[J]. Science China Information Sciences, 2015,58(3): 1-14.
[5]	LIU Y , GU D W , LIU Z Q ,et al. Impossible differential attacks on reduced-round LBlock[C]// 8th International Conference on Information Security Practice and Experience – ISPEC 2012. Hangzhou,China, 2012: 97-108.
[6]	SASAKI Y , WANG L . Meet-in-the-middle technique for integral attacks against Feistel ciphers[C]// 19th International Conference on Selected Areas in Cryptography – SAC 2012. Windsor,ON,Canada, 2013: 234-251.
[7]	SASAKI Y , WANG L . Comprehensive study of integral analysis on 22-round LBlock[C]// 15th International Conference on Information Security and Cryptology – ICISC 2012. Seoul,Korea, 2013: 156-169.
[8]	LIU S S , GONG Z , WANG L B . Improved related-key differential attacks on reduced-round LBlock[C]// 14th International Conference on Information and Communications Security – ICICS 2012. Hong Kong,China, 2012: 58-69.
[9]	WEN L , WANG M Q , ZHAO J Y . Related-key impossible differential attack on reduced-round LBlock[J]. Computer Science and Technology, 2014,29(11): 165-176.
[10]	吴寿昌 . 对轻量级分组密码算法 LBlock 的线性分析[D]. 山东大学, 2014.
	WU S C . Linear cryptanalysis of lightweight block cipher LBlock[D]. Shandong University, 2014.
[11]	CHEN J G , MIYAJI A . Differential cryptanalysis and boomerang cryptanalysis of LBlock[C]// Security Engineering and Intelligence Information. Regensburg,Germany, 2013: 1-15.
[12]	LU J Q . Cryptanalysis of block cipher[R]. University of London, 2016.
[13]	BIHAM E . New types of cryptanalytic attacks using related key[J]. Journal of Cryptology, 1994,7(4): 229-246.
[14]	KNUDSEN L R , . Cryptanalysis of LOKI91[C]// Advances in Cryptology–AUSCRYPT’92.Gold Coast. Queensland,Australia, 1992: 196-208.
[15]	BIHAM E , BIRUUKOV A , SHAMIR A . Cryptanalysis of skipjack reduced to 31 rounds using impossible differentials[C]// Advances in Cryptology – EUROCRYPT’99. Prague,Czech Republic, 1999: 12-23.
[16]	WAGNER D , . The boomerang attack[C]// 6th International Workshop on Fast Software Encryption – FSE’99. Rome,Italy, 1999: 156-170.
[17]	陈平, 廖福成, 卫宏儒 . 对轻量级密码算法 MIBS 的相关密钥不可能差分攻击[J]. 通信学报, 2014,35(2): 190-193.
	CHEN P , LIAO F C , WEI H R . Related-key impossible differential attack on a lightweight block cipher[J]. Journal on Communications, 2014,35(2): 190-193.
[18]	MA X S , QIAO K X . Related-key rectangle attack on round-reduced Khudra block cipher[C]// The 9th International Conference on Network and System Security – NSS 2015. New York,NY,USA, 2015: 331-344.
[19]	付立仕, 金晨辉 . MIBS-80的13轮不可能差分分析[J]. 电子与信息学报, 2016,38(4): 848-855.
	FU L S , JIN C H . Impossible differential cryptanalysis on 13-round MIBS-80[J]. Journal of Electronics ＆ Information Technology, 2016,38(4): 848-855.
[20]	李曼曼, 陈少真 . 对ARIA算法中间相遇攻击的改进[J]. 通信学报, 2015,36(3): 277-282.
	LI M M , CHEN S Z . Improved meet-in-the-middle attack on ARIA cipher[J]. Journal on Communications, 2015,36(3): 277-282.
[21]	KIRCANSKI A , . Analysis of boomerang differential trails via a SAT-based constraint solver URSA[C]// 13th International Conference on Applied Cryptography and Network Security – ACNS 2015. New York,NY,USA, 2015: 331-349.

密钥	主密钥差分路径
密钥	ΔK =0000000000000040000	ΔK =0000000000000080000
ΔK ₁	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₂	0000 0008　　 0000 0008	0000 0010　　 0000 0010
ΔK ₃	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₄	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₅	0000 0400　　 0000 0400	0000 0800　　 0000 0800
ΔK ₆	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₇	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₈	0002 0000　　 0002 0000	0000 0400　　 0000 0400
ΔK ₉	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₁₀	0000 0000　　 0000 0000	0000 0000　　 0000 0000
ΔK ₁₁	0600 0000　　 0200 0000	0200 0000　　 0600 0000
ΔK ₁₂	0000 0000　　 0000 0000	0000 0000　　 0000 0000

攻击类型	攻击轮数	数据复杂度	计算复杂度	文献来源
不可能差分攻击	21	2^62.5	2^73.7	文献[5]
积分攻击	22	2⁶¹	2^70.00	文献[7]
相关密钥飞来去器区分器	16	2⁶⁰	—	文献[8]
相关密钥截断差分分析	22	2⁶⁷	2^64.1	文献[8]
相关密钥不可能差分攻击	23	2^63.27	2^78.3	文献[9]
线性攻击	17	2⁶²	2^77.12	文献[10]
飞来去器攻击	18	2^63.26	2^70.84	文献[11]
相关密钥不可能飞来去器	22	2^51.3	2^71.54	本文

LBlock算法的相关密钥不可能飞来去器分析

Related-key impossible boomerang cryptanalysis on LBlock

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 8

参考文献 21

相关文章 12

Metrics

推荐阅读 0

[1]	蒋梓龙, 金晨辉. Saturnin算法的不可能差分分析[J]. 通信学报, 2022, 43(3): 53-62.
[2]	谢敏,李嘉琪,田峰. FeW的差分故障攻击[J]. 通信学报, 2020, 41(4): 143-149.
[3]	武小年,李迎新,韦永壮,孙亚平. GRANULE和MANTRA算法的不可能差分区分器分析[J]. 通信学报, 2020, 41(1): 94-101.
[4]	谢敏,田峰,李嘉琪. TWINE算法的相关密钥不可能飞来去器攻击[J]. 通信学报, 2019, 40(9): 184-192.
[5]	高杨,王永娟,王磊,王涛. 轻量级分组密码算法TWINE差分故障攻击的改进[J]. 通信学报, 2017, 38(Z2): 178-184.
[6]	崔杰,左海风,仲红. 对轻量级分组密码I-PRESENT-80和I-PRESENT-128的biclique攻击[J]. 通信学报, 2017, 38(11): 13-23.
[7]	黄静,赵新杰,张帆,郭世泽,周平,陈浩,杨建. PRESENT代数故障攻击的改进与评估[J]. 通信学报, 2016, 37(8): 144-156.
[8]	陈平，廖福成，卫宏儒. 对轻量级密码算法MIBS的相关密钥不可能差分攻击[J]. 通信学报, 2014, 35(2): 23-193.
[9]	陈平,廖福成,卫宏儒. 对轻量级密码算法MIBS的相关密钥不可能差分攻击[J]. 通信学报, 2014, 35(2): 190-193.
[10]	张鹏,李瑞林,李超. 对完整轮数ARIRANG加密模式的相关密钥矩形攻击[J]. 通信学报, 2011, 32(8): 15-22.
[11]	韦永壮,胡予濮. 42轮SHACAL-2新的相关密钥矩形攻击[J]. 通信学报, 2009, 30(1): 7-11.
[12]	阳少平,胡予濮,钟名富. 相关密钥不可能差分31轮SHACAL-2攻击[J]. 通信学报, 2007, 28(11A): 54-58.