Determining the Nonexistent Terms of Non-linear Multivariate Polynomials: How to Break Grain-128 More Efficiently
نویسندگان
چکیده
In this paper, we propose a reduction technique that can be used to determine the density of IV terms of a complex multivariable boolean polynomial. Using this technique, we revisit the dynamic cube attack on Grain-128. Based on choosing one more nullified state bit and one more dynamic bit, we are able to obtain the IV terms of degree 43 with various of complicated reduction techniques for polynomials, so that the nonexistent IV terms can be determined. As a result, we improve the time complexity of the best previous attack on Grain-128 by a factor of 2. Moreover, our attack applies to all keys.
منابع مشابه
Algebraic Attacks on Stream Ciphers with Linear Feedback
A classical construction of stream ciphers is to combine several LFSRs and a highly non-linear Boolean function f . Their security is usually studied in terms of correlation attacks, that can be seen as solving a system of multivariate linear equations, true with some probability. At ICISC’02 this approach is extended to systems of higher-degree multivariate equations, and gives an attack in 2 ...
متن کاملEffects of Non-Ideal Pre-Distorter High Power Amplifiers in WCDMA Using Multi-User Detectors
Wide band code division multiple access (WCDMA) signals, transmitted by the base station high power amplifiers (HPAs), show high peak to average power ratios (PAPR), which results in nonlinear distortions. In this paper, using computer simulations effect of using a predistorted HPA on the symbol error rate (SER) of multi-user detectors in terms of output back-off (OBO) in the transmit power...
متن کاملIsomorphism of Polynomials : New Results
In this paper, we investigate the difficulty of the Isomorphism of Polynomials (IP) Problem as well as one of its variant IP1S. The Isomorphism of Polynomials is a well-known problem studied in multivariate cryptography. It is related to the hardness of the key recovery of some cryptosystems. The problem is the following: given two families of multivariate polynomials a and b, find two invertib...
متن کاملOperational matrices with respect to Hermite polynomials and their applications in solving linear differential equations with variable coefficients
In this paper, a new and efficient approach is applied for numerical approximation of the linear differential equations with variable coeffcients based on operational matrices with respect to Hermite polynomials. Explicit formulae which express the Hermite expansion coeffcients for the moments of derivatives of any differentiable function in terms of the original expansion coefficients of the f...
متن کامل“Equivalent Linear Composition” as an Efficient Stratification Factor in Multipurpose Surveys
Horticulture survey is a multi-purpose survey which is conducted ad hoc by Statistical Center of Iran (SCI). Availability of survey variables in the sampling frame suggests a multivariate stratification in each province based on its desired variables for acquiring a higher efficiency. There are several ways to stratify the sampling frame considering all stratification variables, such as using s...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- IACR Cryptology ePrint Archive
دوره 2017 شماره
صفحات -
تاریخ انتشار 2017