Related-Key Rectangle Attacks on Reduced Versions of SHACAL-1 and AES-192
- Cite this paper as:
- Hong S., Kim J., Lee S., Preneel B. (2005) Related-Key Rectangle Attacks on Reduced Versions of SHACAL-1 and AES-192. In: Gilbert H., Handschuh H. (eds) Fast Software Encryption. FSE 2005. Lecture Notes in Computer Science, vol 3557. Springer, Berlin, Heidelberg
In this paper we propose a notion of related-key rectangle attack using 4 related keys. It is based on two consecutive related-key differentials which are independent of each other. Using this attack we can break SHACAL-1 with 512-bit keys up to 70 rounds out of 80 rounds and AES with 192-bit keys up to 8 rounds out of 12 rounds, which are faster than exhaustive search.