Springer Nature is making Coronavirus research free. View research | View latest news | Sign up for updates

Analysis of minimum numbers of linearly active S-boxes of a class of generalized feistel block ciphers

  • 70 Accesses


For a class of generalized Feistel block ciphers, an explicit formula for the minimum numbers of linearly active S-boxes of any round r is presented.

This is a preview of subscription content, log in to check access.


  1. [1]

    M. Matsui, Linear cryptanalysis method for DES cipher, Advances in Cryptology-Eurocrypt’93, LNCS, 1994, 765: 386–397.

  2. [2]

    E. Biham and A. Shamir, Differential cryptanalysis of DES-like cryptosystems, Advances in Cryptology-Crypt0’90, LNCS, 1991, 537: 3–72.

  3. [3]

    Y. Zheng, T. Matsumoto, and H. Imai, On the construction of block ciphers provably secure and not relying on any unproved hypotheses, ed. by G. Brassard, CRYPTO, Springer, Heidelberg (1990), 1989, 435: 461–480.

  4. [4]

    S. Moriai and S. Vaudenay, On the pseudorandomness of top-level schemes of block ciphers, ed. by T. Okamoto, ASIACRYPT, Springer, Heidelberg, 2000, 1976: 289–302.

  5. [5]

    J. Kim, S. Hong, J. Sung, S. Lee, J. Lim, and S. Sung, Impossible differential cryptanalysis for block cipher structures, eds. by T. Johansson, INDOCRYPT, Springer, Heidelberg, 2003, 2904: 82–96.

  6. [6]

    K. Nyberg and L. R. Knudsen, Provable security against differential cryptanalysis, Advances in Cryptology-CRYPTO’92, Springer-Verlag, 1992, 740: 566–574.

  7. [7]

    C. Lee, J. Kim, J. Sung, S. Hong, and S. Lee, Provable security for an RC6-like structure and a MISTY-FO-like structure against differential cryptanalysis, eds. by M. Gavrilova, et al., Springer, Heidelberg, 2006, 3982: 446–455.

  8. [8]

    T. Shirai and K. Araki, On generalized Feistel structures using the diffusion switching mechanism, IEICE Trans. Fundamentals E91-A(8), 2008.

  9. [9]

    K. Nyberg, Generalized Feistel network, eds. by K. Kim, T. Matsumoto, ASIACRYPT, Springer, Heidelberg, 1996, 1163: 91–104.

  10. [10]

    M. Kanda, Practical security evaluation against differential and linear cryptanalyses for Feistel ciphers with SPN round function, Selected Areas in Cryptography, LNCS, 2001, 2012: 324–338.

  11. [11]

    K. Nyberg and L. R. Kundsen, Provable security against a differential attack, Journal of Cryptology, 1995, 8(1): 27–37.

  12. [12]

    T. Suzaki and K. Minematsu, Improving the generalized Feistel, eds. by S. Hong, T. Iwata, FSE, Springer, Heidelberg, 2010, 6147: 19–39.

  13. [13]

    R. W. Zhang, Linear cryptanalysis for a class of generalized Feistel ciphers, Journal of the Graduate School of the Chinese Academy of Sciences, 2003, 20(1): 31–38.

  14. [14]

    C. Li, L. J. Qu, and Q. Li, Differential Cryptanalysis of a Class of Generalized Feistel Ciphers, CHINACRYPT’2004, Science Press, Beijing, 2004.

Download references

Author information

Correspondence to Xiaopei Guo.

Additional information

This research was supported by the National Natural Science Foundation of China under Grant No. 10871106.

This paper was recommended for publication by Editor Lei HU.

Rights and permissions

Reprints and Permissions

About this article

Cite this article

Guo, X., Xu, K., Sun, T. et al. Analysis of minimum numbers of linearly active S-boxes of a class of generalized feistel block ciphers. J Syst Sci Complex 25, 1014–1031 (2012).

Download citation

Key words

  • Block cipher
  • generalized Feistel structure
  • linear spread value
  • the minimum number of linearly active S-boxes