Linear Cryptanalysis of Reduced Round Serpent

  • Eli Biham
  • Orr Dunkelman
  • Nathan Keller
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 2355)

Abstract

Serpent is one of the 5 AES finalists. In this paper we present a 9-round linear approximation for Serpent with probability of 1/2+2-52. We use it to attack 10-round Serpent with all key lengths with data complexity of 2118 and running time of 289. A variant of this approximation is used in the first attack against an 11-round Serpent with 192-bit and 256-bit keys, which require the same amount of data and 2187 running time.

References

  1. [1]
    R. Anderson, E. Biham and L. Knudsen, Serpent: A Proposal for the Advanced Encryption Standard, NIST AES Proposal1998.Google Scholar
  2. [2]
    E. Biham, A Note on Comparing the AES Candidates, Second AES Candidate Conference, 1999.Google Scholar
  3. [3]
    E. Biham and A. Shamir, Differential Cryptanalysis of the Data Encryption Standard, Springer-Verlag, 1993.Google Scholar
  4. [4]
    E. Biham, O. Dunkelman, N. Keller, The Rectangle Attack-Rectangling the Serpent, To appear in proceedings of Eurocrypt 2001. Available on-line at http://vipe.technion.ac.il/orrd/crypt/
  5. [5]
    O. Dunkelman, An Analysis of Serpent-p and Serpent-p-ns, rump session, Second AES Candidate Conference, 1999.Google Scholar
  6. [6]
    T. Kohno, J. Kelsey and B. Schneier, Preliminary Cryptanalysis of Reduced-Round Serpent, Third AES Candidate Conferece, 2000.Google Scholar
  7. [7]
    J. Kelsey, T. Kohno and B. Schneier, Amplified Boomerang Attacks Against Reduced-Round MARS and Serpent, FSE 7, to appear.Google Scholar
  8. [8]
    M. Matsui, Linear Cryptanalysis Method for DES Cipher, Eurocrypt 93, Springer Verlag LNCS 765, pp. 386–397.Google Scholar
  9. [9]
    NIST, A Request for Candidate Algorithm Nominations for the AES, available on-line at http://www.nist.gov/aes/

Copyright information

© Springer-Verlag Berlin Heidelberg 2002

Authors and Affiliations

  • Eli Biham
    • 1
  • Orr Dunkelman
    • 1
  • Nathan Keller
    • 2
  1. 1.Computer Science DepartmentTechnion - Israel Institute of TechnologyHaifaIsrael
  2. 2.Mathematics DepartmentTechnion - Israel Institute of TechnologyHaifaIsrael

Personalised recommendations