发布求助
文献互助 智能选刊 最新文献

Linear Analysis of reduced-round CAST-128 and CAST-256

Anais do VII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais (SBSeg 2007) Pub Date : 2007-08-27 DOI:10.5753/sbseg.2007.20914
Jorge Nakahara, Mads Rasmussen
{"title":"Linear Analysis of reduced-round CAST-128 and CAST-256","authors":"Jorge Nakahara, Mads Rasmussen","doi":"10.5753/sbseg.2007.20914","DOIUrl":null,"url":null,"abstract":"This paper describes a linear analysis of reduced-round versions of the CAST-128 and CAST-256 block ciphers. CAST-256 was a former candidate to the AES Development Process. Both ciphers use the same nonlinear components (fixed 8x32-bit S-boxes, key-dependent bit-rotation, modular addition and subtraction on 32-bit words) and a Feistel Network structure. We exploit the fact that the S-boxes are non-surjective mappings to construct iterative linear distinguishers for both ciphers. As far as we are aware of, this paper describes the first known-plaintext analysis of reduced-round variants of these ciphers.","PeriodicalId":199231,"journal":{"name":"Anais do VII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais (SBSeg 2007)","volume":"106 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-08-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Anais do VII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais (SBSeg 2007)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.5753/sbseg.2007.20914","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 14

Abstract

This paper describes a linear analysis of reduced-round versions of the CAST-128 and CAST-256 block ciphers. CAST-256 was a former candidate to the AES Development Process. Both ciphers use the same nonlinear components (fixed 8x32-bit S-boxes, key-dependent bit-rotation, modular addition and subtraction on 32-bit words) and a Feistel Network structure. We exploit the fact that the S-boxes are non-surjective mappings to construct iterative linear distinguishers for both ciphers. As far as we are aware of, this paper describes the first known-plaintext analysis of reduced-round variants of these ciphers.
分享
查看原文 本刊更多论文
缩减圆CAST-128和CAST-256的线性分析
本文描述了CAST-128和CAST-256分组密码的简化圆形版本的线性分析。CAST-256是AES开发过程的前候选。两种密码使用相同的非线性组件(固定的8 × 32位s盒,依赖于密钥的位旋转,32位单词的模块化加法和减法)和Feistel网络结构。我们利用s盒是非满射映射的事实来构造两个密码的迭代线性区分符。据我们所知,本文描述了已知的第一个对这些密码的简化回合变体的明文分析。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
Anais do VII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais (SBSeg 2007)
Anais do VII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais (SBSeg 2007)
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信