Chapter

Fast Software Encryption

Volume 3557 of the series Lecture Notes in Computer Science pp 368-383

Related-Key Rectangle Attacks on Reduced Versions of SHACAL-1 and AES-192

  • Seokhie HongAffiliated withKatholieke Universiteit Leuven, ESAT/SCD-COSIC
  • , Jongsung KimAffiliated withCenter for Information Security Technologies(CIST), Korea University
  • , Sangjin LeeAffiliated withCenter for Information Security Technologies(CIST), Korea University
  • , Bart PreneelAffiliated withKatholieke Universiteit Leuven, ESAT/SCD-COSIC

Abstract

In this paper we propose a notion of related-key rectangle attack using 4 related keys. It is based on two consecutive related-key differentials which are independent of each other. Using this attack we can break SHACAL-1 with 512-bit keys up to 70 rounds out of 80 rounds and AES with 192-bit keys up to 8 rounds out of 12 rounds, which are faster than exhaustive search.