Differential and linear cryptanalysis of a reduced-round SC2000

Hitoshi Yanami; Takeshi Shimoyama; Orr Dunkelman

doi:10.1007/3-540-45661-9_3

Differential and linear cryptanalysis of a reduced-round SC2000

Hitoshi Yanami, Takeshi Shimoyama, Orr Dunkelman

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

We analyze the security of the SC2000 block cipher against both differential and linear attacks. SC2000 is a six-and-a-half-round block cipher, which has a unique structure that includes both the Feistel and Substitution-Permutation Network (SPN) structures. Taking the structure of SC2000 into account, we investigate one- and two-round iterative differential and linear characteristics. We present two-round iterative differential characteristics with probability 2^-58 and two-round iterative linear characteristics with probability 2^-56. These characteristics, which we obtained through a search, allowed us to attack four-and-a-half-round SC2000 in the 128-bit user-key case. Our differential attack needs 2¹⁰³ pairs of chosen plaintexts and 2²⁰ memory accesses and ourlinearattac k needs 2^115.17 known plaintexts and 2^42.32 memory accesses, or 2^104.32 known plaintexts and 2^83.32 memory accesses.

Original language	English
Title of host publication	Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers
Editors	Joan Daemen, Vincent Rijmen
Publisher	Springer Verlag
Pages	34-48
Number of pages	15
ISBN (Print)	9783540440093
DOIs	https://doi.org/10.1007/3-540-45661-9_3
State	Published - 2002
Externally published	Yes
Event	9th International Workshop on Fast Software Encryption, FSE 2002 - Leuven, Belgium Duration: 4 Feb 2002 → 6 Feb 2002

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	2365
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	9th International Workshop on Fast Software Encryption, FSE 2002
Country/Territory	Belgium
City	Leuven
Period	4/02/02 → 6/02/02

Bibliographical note

Publisher Copyright:
© Springer-Verlag Berlin Heidelberg 2002.

Keywords

Characteristic
Differential attack
Linear attack
Probability
SC2000
Symmetric block cipher

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/3-540-45661-9_3

Cite this

Yanami, H., Shimoyama, T., & Dunkelman, O. (2002). Differential and linear cryptanalysis of a reduced-round SC2000. In J. Daemen, & V. Rijmen (Eds.), Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers (pp. 34-48). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2365). Springer Verlag. https://doi.org/10.1007/3-540-45661-9_3

Yanami, Hitoshi ; Shimoyama, Takeshi ; Dunkelman, Orr. / Differential and linear cryptanalysis of a reduced-round SC2000. Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers. editor / Joan Daemen ; Vincent Rijmen. Springer Verlag, 2002. pp. 34-48 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{9c25be9832e3437fba75b41be3e6db7d,

title = "Differential and linear cryptanalysis of a reduced-round SC2000",

abstract = "We analyze the security of the SC2000 block cipher against both differential and linear attacks. SC2000 is a six-and-a-half-round block cipher, which has a unique structure that includes both the Feistel and Substitution-Permutation Network (SPN) structures. Taking the structure of SC2000 into account, we investigate one- and two-round iterative differential and linear characteristics. We present two-round iterative differential characteristics with probability 2-58 and two-round iterative linear characteristics with probability 2-56. These characteristics, which we obtained through a search, allowed us to attack four-and-a-half-round SC2000 in the 128-bit user-key case. Our differential attack needs 2103 pairs of chosen plaintexts and 220 memory accesses and ourlinearattac k needs 2115.17 known plaintexts and 242.32 memory accesses, or 2104.32 known plaintexts and 283.32 memory accesses.",

keywords = "Characteristic, Differential attack, Linear attack, Probability, SC2000, Symmetric block cipher",

author = "Hitoshi Yanami and Takeshi Shimoyama and Orr Dunkelman",

note = "Publisher Copyright: {\textcopyright} Springer-Verlag Berlin Heidelberg 2002.; 9th International Workshop on Fast Software Encryption, FSE 2002 ; Conference date: 04-02-2002 Through 06-02-2002",

year = "2002",

doi = "10.1007/3-540-45661-9_3",

language = "English",

isbn = "9783540440093",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "34--48",

editor = "Joan Daemen and Vincent Rijmen",

booktitle = "Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers",

address = "Germany",

}

Yanami, H, Shimoyama, T & Dunkelman, O 2002, Differential and linear cryptanalysis of a reduced-round SC2000. in J Daemen & V Rijmen (eds), Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 2365, Springer Verlag, pp. 34-48, 9th International Workshop on Fast Software Encryption, FSE 2002, Leuven, Belgium, 4/02/02. https://doi.org/10.1007/3-540-45661-9_3

Differential and linear cryptanalysis of a reduced-round SC2000. / Yanami, Hitoshi; Shimoyama, Takeshi; Dunkelman, Orr.
Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers. ed. / Joan Daemen; Vincent Rijmen. Springer Verlag, 2002. p. 34-48 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2365).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Differential and linear cryptanalysis of a reduced-round SC2000

AU - Yanami, Hitoshi

AU - Shimoyama, Takeshi

AU - Dunkelman, Orr

N1 - Publisher Copyright: © Springer-Verlag Berlin Heidelberg 2002.

PY - 2002

Y1 - 2002

N2 - We analyze the security of the SC2000 block cipher against both differential and linear attacks. SC2000 is a six-and-a-half-round block cipher, which has a unique structure that includes both the Feistel and Substitution-Permutation Network (SPN) structures. Taking the structure of SC2000 into account, we investigate one- and two-round iterative differential and linear characteristics. We present two-round iterative differential characteristics with probability 2-58 and two-round iterative linear characteristics with probability 2-56. These characteristics, which we obtained through a search, allowed us to attack four-and-a-half-round SC2000 in the 128-bit user-key case. Our differential attack needs 2103 pairs of chosen plaintexts and 220 memory accesses and ourlinearattac k needs 2115.17 known plaintexts and 242.32 memory accesses, or 2104.32 known plaintexts and 283.32 memory accesses.

AB - We analyze the security of the SC2000 block cipher against both differential and linear attacks. SC2000 is a six-and-a-half-round block cipher, which has a unique structure that includes both the Feistel and Substitution-Permutation Network (SPN) structures. Taking the structure of SC2000 into account, we investigate one- and two-round iterative differential and linear characteristics. We present two-round iterative differential characteristics with probability 2-58 and two-round iterative linear characteristics with probability 2-56. These characteristics, which we obtained through a search, allowed us to attack four-and-a-half-round SC2000 in the 128-bit user-key case. Our differential attack needs 2103 pairs of chosen plaintexts and 220 memory accesses and ourlinearattac k needs 2115.17 known plaintexts and 242.32 memory accesses, or 2104.32 known plaintexts and 283.32 memory accesses.

KW - Characteristic

KW - Differential attack

KW - Linear attack

KW - Probability

KW - SC2000

KW - Symmetric block cipher

UR - http://www.scopus.com/inward/record.url?scp=84949435118&partnerID=8YFLogxK

U2 - 10.1007/3-540-45661-9_3

DO - 10.1007/3-540-45661-9_3

M3 - Conference contribution

AN - SCOPUS:84949435118

SN - 9783540440093

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 34

EP - 48

BT - Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers

A2 - Daemen, Joan

A2 - Rijmen, Vincent

PB - Springer Verlag

T2 - 9th International Workshop on Fast Software Encryption, FSE 2002

Y2 - 4 February 2002 through 6 February 2002

ER -

Yanami H, Shimoyama T, Dunkelman O. Differential and linear cryptanalysis of a reduced-round SC2000. In Daemen J, Rijmen V, editors, Fast Software Encryption - 9th International Workshop, FSE 2002, Revised Papers. Springer Verlag. 2002. p. 34-48. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/3-540-45661-9_3

Differential and linear cryptanalysis of a reduced-round SC2000

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this