通信学报 ›› 2017, Vol. 38 ›› Issue (Z2): 178-184.doi: 10.11959/j.issn.1000-436x.2017274

• 学术论文 • 上一篇    下一篇

轻量级分组密码算法TWINE差分故障攻击的改进

高杨,王永娟,王磊,王涛   

  1. 信息工程大学,河南 洛阳 471003
  • 出版日期:2017-11-01 发布日期:2018-06-07
  • 作者简介:高杨(1994-),男,河南洛阳人,信息工程大学硕士生,主要研究方向为密码算法分析。|王永娟(1982-),女,河南开封人,信息工程大学副教授、硕士生导师,主要研究方向为密码算法分析。|王磊(1972-),男,河南驻马店人,信息工程大学讲师,主要研究方向为信息安全。|王涛(1995-),男,山东临沂人,信息工程大学硕士生,主要研究方向为对称密码算法的设计与分析。
  • 基金资助:
    国家博士后科学基金面上基金资助项目(2014M552603)

Improvement Differential fault attack on TWINE

Yang GAO,Yong-juan WANG,Lei WANG,Tao WANG   

  1. Information Engineering University,Luoyang 471003,China
  • Online:2017-11-01 Published:2018-06-07
  • Supported by:
    China Postdoctoral Science Foundation(2014M552603)

摘要:

针对轻量级分组密码TWINE的半字节分组差分扩散规律展开研究,提出一种新的差分故障攻击的方法,并基于S盒差分分布统计规律性计算出恢复轮密钥的概率下界,由此给出完整恢复种子密钥的故障注入次数期望。理论证明和实验结果同时表明,算法第33、34、35轮平均注入9次故障即可完全恢复种子密钥。最后提出故障注入位置的改进,提升了实际攻击的可行性。

关键词: 轻量级分组密码, TWINE算法, 差分故障攻击, 概率模型

Abstract:

A new method of differential fault attack was proposed,which was based on the nibble-group differential diffusion property of the lightweight block cipher TWINE.On the basis of the statistical regularity of the S-box differential distribution,the lower bound of the probability of recovering round key was calculated.Then expectation of number of fault injections when restoring seed key can be estimated.Theoretical proof and experimental results both show that an average of nine times of fault injections in 33,34 and 35 rounds bring about the seed key recovered completely.Finally,the improvement of the fault injection location was proposed,which enhances the feasibility of the genuine attack.

Key words: lightweight block cipher, TWINE algorithm, differential fault attack, probability model

中图分类号: 

No Suggested Reading articles found!