Cryptanalysis of round-reduced ASCON

Highlight
  • 84 Downloads

简化版ASCON算法的密码学分析

创新点

ASCON是CAESAR竞赛的候选认证加密算法之一。在CT-RSA 2015上, 其设计者恢复了含有6轮初始化阶段的ASCON算法的密钥, 并给出了3/4轮的标签生成阶段的伪造攻击, 该伪造需求2^33/2^101个消息。这篇论文对包含7轮初始化阶段和5轮明文处理阶段的简化版ASCON算法执行密钥恢复攻击。除此之外, 我们对4/5/6轮的标签生成阶段建立了伪造, 所需数据量为2^9/2^17/2^33。该伪造相对之前具有实际攻击复杂度。

关键词

ASCON 认证加密 CAESAR cube 密钥恢复 

Notes

Acknowledgements

This work was supported by National Basic Research Program of China (Grant No. 2013CB834205), National Natural Science Foundation of China (Grant Nos. 61133013, 61572293, 61602276), and Program for New Century Excellent Talents in University of China (Grant No. NCET-13-0350).

References

  1. 1.
    Dobraunig C, Eichlseder M, Mendel F, et al. Cryptanalysis of Ascon. In: Proceedings of the Cryptographer’s Track at the RSA Conference, San Francisco, 2015. 371–387Google Scholar
  2. 2.
    Dinur I, Morawiecki P, Pieprzyk J, et al. Cube attacks and cube-attack-like cryptanalysis on the roundreduced keccak sponge function. In: Advances in Cryptology—EUROCRYPT 2015. Berlin: Springer, 2015. 733–761Google Scholar
  3. 3.
    Aumasson J-P, Dinur I, Meier W, et al. Cube testers and key recovery attacks on reduced-round MD6 and trivium. In: Fast Software Encryption. Berlin: Springer, 2009. 1–22CrossRefGoogle Scholar

Copyright information

© Science China Press and Springer-Verlag Berlin Heidelberg 2016

Authors and Affiliations

  • Yanbin Li
    • 1
  • Guoyan Zhang
    • 1
  • Wei Wang
    • 1
  • Meiqin Wang
    • 1
    • 2
  1. 1.Key Laboratory of Cryptologic Technology and Information Security, Ministry of EducationShandong UniversityJinanChina
  2. 2.State Key Laboratory of CryptologyState Cryptography AdministrationBeijingChina

Personalised recommendations