the upper bounds on differntial characteristics in block cipher SMS4

نویسندگان

  • Meiling Zhang
  • Jingmei Liu
  • Xinmei Wang
چکیده

in block cipher SMS4 Zhang MeiLing, Liu JingMei, Wang XinMei National Key Lab. of Integrated Service Networks, Xidian University. Xi’an, 710071,China Abstract: SMS4 is a 128-bit block cipher with a 128-bit user key and 32 rounds, which is used in the Chinese National Standard for Wireless LAN WAPI. In this paper, all possible differential patterns are divided into several sections by six designed rules. In order to evaluate the security against the differential cryptanalysis of SMS4, we calculate the lower bounds on the number of active S-Boxes for all kinds of sections, based on which the lower bounds on the number of active S-Boxes in all possible differential patterns can be derived. Finally, the upper bounds on differential characteristic probabilities of arbitrary round numbers are given, which can be used to estimate the strength of SMS4 against differential attack and linear attack.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Multiple Linear Cryptanalysis of Reduced-Round SMS4 Block Cipher

SMS4 is a 32-round unbalanced Feistel block cipher with its block size and key size being 128 bits. As a fundamental block cipher used in the WAPI standard, the Chinese national standard for WLAN, it has been widely implemented in Chinese WLAN industry. In this paper, we present a modified branch-and-bound algorithm which can be used for searching multiple linear characteristics for SMS4-like u...

متن کامل

Differential Cryptanalysis of SMS4 Block Cipher

SMS4 is a 128-bit block cipher used in the WAPI standard for wireless networks in China. In this paper, we analyze the security of SMS4 block cipher against differential cryptanalysis. Firstly, we prove three theorems and one corollary that reflect relationships of 5and 6round SMS4. Nextly, by these relationships, we clarify the minimum number of differentially active S-boxes in 6-, 7and 12-rou...

متن کامل

Practical Security against Differential and Linear Cryptanalysis for SMS4-like Cipher

SMS4, a block cipher which employs a special kind of unbalanced Feistel structure, has been accepted as the Chinese National Standard for securing Wireless LANs. This paper investigates the upper bounds of the maximum differential and linear characteristic probabilities of SMS4like cipher, in order to evaluate the practical security against differential and linear cryptanalysis. In the same way...

متن کامل

Improved Linear Cryptanalysis of SMS4 Block Cipher

SMS4 is a block cipher standard used for wireless communications in China. We analyze a reduced versions of SMS4 by the multidimensional linear cryptanalysis method. Our analysis shows that the 23-round of SMS4 can be attacked with 2 data complexity and time complexity less than exhaustive search.

متن کامل

Algebraic Cryptanalysis of Sms4

The SMS4 block cipher is part of the Chinese WAPI wireless standard. It is a 32-round block cipher with 128-bit blocks and 128-bit keys. This paper explores algebraic attacks on SMS4 using Gröbner basis attacks on equation systems over GF(2) and GF(28), as well as attacks using a SAT solver derived from the GF(2) model.

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:
  • IACR Cryptology ePrint Archive

دوره 2010  شماره 

صفحات  -

تاریخ انتشار 2010