The Number of Impossible Additive Differentials for the Composition of XOR and Bit Rotation

IF 0.58 Q3 Engineering

Journal of Applied and Industrial Mathematics Pub Date : 2025-07-11 DOI:10.1134/S1990478924040094

N. A. Kolomeec

{"title":"The Number of Impossible Additive Differentials\nfor the Composition of XOR and Bit Rotation","authors":"N. A. Kolomeec","doi":"10.1134/S1990478924040094","DOIUrl":null,"url":null,"abstract":" Additive differentials of the function\n\\( (x \\oplus y) \\lll r \\) whose probability is\n\\( 0 \\) are considered, where\n\\( x, y \\in \\mathbb {Z}_2^{n} \\) and\n\\( 1 \\leq r < n \\). They are called impossible differentials and are interesting in the context of\ndifferential cryptanalysis of ciphers whose schemes consist of additions modulo\n\\( 2^n \\), bitwise XORs (\n\\( \\oplus \\)), and bit rotations (\n\\( \\lll r \\)). The number of all such differentials is calculated for all possible\n\\( r \\) and\n\\( n \\). It is also shown that this number is greater than\n\\( \\frac {38}{245} 8^n \\). Moreover, the estimate is asymptotically tight for\n\\( r, n-r \\to \\infty \\). For any fixed\n\\( n \\) the number of all impossible differentials decreases as\n\\( r \\) goes from\n\\( 1 \\) to\n\\( \\lceil n/2 \\rceil \\) (to\n\\( \\lceil n/2 \\rceil + 1 \\) in the case of\n\\( n \\in \\{4, 5, 6, 8, 10, 12\\} \\)) and then increases monotonically as\n\\( r \\) goes to\n\\( n-1 \\). A simplified description of all impossible differentials is obtained up to\nknown symmetries.\n","PeriodicalId":607,"journal":{"name":"Journal of Applied and Industrial Mathematics","volume":"18 4","pages":"722 - 743"},"PeriodicalIF":0.5800,"publicationDate":"2025-07-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Applied and Industrial Mathematics","FirstCategoryId":"1085","ListUrlMain":"https://link.springer.com/article/10.1134/S1990478924040094","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"Engineering","Score":null,"Total":0}

引用次数: 0

Abstract

Additive differentials of the function \( (x \oplus y) \lll r \) whose probability is \( 0 \) are considered, where \( x, y \in \mathbb {Z}_2^{n} \) and \( 1 \leq r < n \). They are called impossible differentials and are interesting in the context of differential cryptanalysis of ciphers whose schemes consist of additions modulo \( 2^n \), bitwise XORs ( \( \oplus \)), and bit rotations ( \( \lll r \)). The number of all such differentials is calculated for all possible \( r \) and \( n \). It is also shown that this number is greater than \( \frac {38}{245} 8^n \). Moreover, the estimate is asymptotically tight for \( r, n-r \to \infty \). For any fixed \( n \) the number of all impossible differentials decreases as \( r \) goes from \( 1 \) to \( \lceil n/2 \rceil \) (to \( \lceil n/2 \rceil + 1 \) in the case of \( n \in \{4, 5, 6, 8, 10, 12\} \)) and then increases monotonically as \( r \) goes to \( n-1 \). A simplified description of all impossible differentials is obtained up to known symmetries.

查看原文本刊更多论文

异或和位旋转组合中不可能加性微分的个数

考虑概率为\( 0 \)的函数\( (x \oplus y) \lll r \)的加性微分，其中\( x, y \in \mathbb {Z}_2^{n} \)和\( 1 \leq r < n \)。它们被称为不可能微分，在密码的微分密码分析的上下文中很有趣，这些密码的方案包括加法模\( 2^n \)、逐位xor （\( \oplus \)）和位旋转（\( \lll r \)）。对所有可能的\( r \)和\( n \)计算所有这些差异的数量。结果还表明，这个数字大于\( \frac {38}{245} 8^n \)。此外，对\( r, n-r \to \infty \)的估计是渐近严密的。对于任何固定的\( n \)，当\( r \)从\( 1 \)到\( \lceil n/2 \rceil \)时，所有不可能的差分的数量减少（\( n \in \{4, 5, 6, 8, 10, 12\} \)的情况是\( \lceil n/2 \rceil + 1 \)），然后随着\( r \)到\( n-1 \)单调增加。对于已知的对称性，得到了所有不可能微分的简化描述。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Applied and Industrial Mathematics Engineering-Industrial and Manufacturing Engineering

CiteScore

1.00

自引率

0.00%

发文量

期刊介绍： Journal of Applied and Industrial Mathematics is a journal that publishes original and review articles containing theoretical results and those of interest for applications in various branches of industry. The journal topics include the qualitative theory of differential equations in application to mechanics, physics, chemistry, biology, technical and natural processes; mathematical modeling in mechanics, physics, engineering, chemistry, biology, ecology, medicine, etc.; control theory; discrete optimization; discrete structures and extremum problems; combinatorics; control and reliability of discrete circuits; mathematical programming; mathematical models and methods for making optimal decisions; models of theory of scheduling, location and replacement of equipment; modeling the control processes; development and analysis of algorithms; synthesis and complexity of control systems; automata theory; graph theory; game theory and its applications; coding theory; scheduling theory; and theory of circuits.