The Wide Trail Design Strategy
We explain the theoretical background of the wide trail design strategy, which was used to design Rijndael, the Advanced Encryption Standard (AES). In order to facilitate the discussion, we introduce our own notation to describe differential and linear cryptanalysis. We present a block cipher structure and prove bounds on the resistance against differential and linear cryptanalysis.
Unable to display preview. Download preview PDF.
- 1.R. Anderson, E. Biham, and L. R. Knudsen. Serpent. In Proceedings of the first AES candidate conference, Ventura, August 1998.Google Scholar
- 3.J. Daemen, R. Govaerts, and J. Vandewalle. Anew approach to block cipher design. In Vaudenay , pages 18–32.Google Scholar
- 5.J. Daemen, M. Peeters, G. V. Assche, and V. Rijmen. Noekeon. In First open NESSIE Workshop, Leuven, November2000.Google Scholar
- 6.L. R. Knudsen. Truncated and higher order differentials. In B. Preneel, editor, Fast Software Encryption’ 94, volume 1008 of Lecture Notes in Computer Science, pages 196–211. Springer-Verlag, 1995.Google Scholar
- 7.M. Matsui. Linear cryptanalysis method for DES cipher. In T. Helleseth, editor, Advances in Cryptology, Proceedings of Eurocrypt’ 93, volume 765 of Lecture Notes in Computer Science, pages 386–397. Springer-Verlag, 1994.Google Scholar
- 10.S. Vaudenay, editor. Fast Software Encryption’ 98, volume 1372 of Lecture Notes in Computer Science. Springer-Verlag, 1998.Google Scholar