Improved top-down techniques in differential cryptanalysis

Itai Dinur, Orr Dunkelman, Masha Gutman, Adi Shamir

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The fundamental problem of differential cryptanalysis is to find the highest entries in the Difference Distribution Table (DDT) of a given mapping F over n-bit values, and in particular to find the highest diagonal entries which correspond to the best iterative characteristics of F. The standard bottom-up approach to this problem is to consider all the internal components of the mapping along some differential characteristic, and to multiply their transition probabilities. However, this can provide seriously distorted estimates since the various events can be dependent, and there can be a huge number of low probability characteristics contributing to the same high probability entry. In this paper we use a top-down approach which considers the given mapping as a black box, and uses only its input/output relations in order to obtain direct experimental estimates for its DDT entries which are likely to be much more accurate. In particular, we describe three new techniques which reduce the time complexity of three crucial aspects of this problem: Finding the exact values of all the diagonal entries in the DDT for small values of n, approximating all the diagonal entries which correspond to low Hamming weight differences for large values of n, and finding an accurate approximation for any DDT entry whose large value is obtained from many small contributions. To demonstrate the potential contribution of our new techniques, we apply them to the SIMON family of block ciphers, show experimentally that most of the previously published bottom-up estimates of the probabilities of various differentials are off by a significant factor, and describe new differential properties which can cover more rounds with roughly the same probability for several of its members.

Original languageEnglish
Title of host publicationProgress in Cryptology – LATINCRYPT 2015 - 4th International Conference on Cryptology and Information Security in Latin America, Proceedings
EditorsFrancisco Rodríguez-Henríquez, Kristin Lauter
PublisherSpringer Verlag
Pages139-156
Number of pages18
ISBN (Print)9783319221731
DOIs
StatePublished - 2015
Event4th International Conference on Cryptology and Information Security in Latin America, LATINCRYPT 2015 - Guadalajara, Mexico
Duration: 23 Aug 201526 Aug 2015

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume9230
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference4th International Conference on Cryptology and Information Security in Latin America, LATINCRYPT 2015
Country/TerritoryMexico
CityGuadalajara
Period23/08/1526/08/15

Bibliographical note

Funding Information:
O. Dunkelman—The second author was supported in part by the Israel Science Foundation through grants No. 827/12 and No. 1910/12.

Publisher Copyright:
© Springer International Publishing Switzerland 2015.

Keywords

  • Difference distribution tables
  • Differential cryptanalysis
  • Iterative characteristics
  • SIMON

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science (all)

Fingerprint

Dive into the research topics of 'Improved top-down techniques in differential cryptanalysis'. Together they form a unique fingerprint.

Cite this