ARIA的不可能差分分析

上海交通大学学报（自然版） ›› 2011, Vol. 45 ›› Issue (07): 1063-1067.

• 无线电电子学、电信技术 • 上一篇下一篇

ARIA的不可能差分分析

张磊，郭建胜

(解放军信息工程大学电子技术学院，郑州 450004)

收稿日期:2010-08-23 出版日期:2011-07-29 发布日期:2011-07-29

Impossible Differential Cryptanalysis of ARIA

ZHANG Lei, GUO Jian-Sheng

(Institute of Electronic Technology, The PLA Information Engineering University,Zhengzhou 450004, China)

Received:2010-08-23 Online:2011-07-29 Published:2011-07-29

摘要/Abstract

摘要： 研究了ARIA在不可能差分分析下的安全性.通过对ARIA线性扩散层的分析，提出一类新的6轮ARIA的不可能差分，并从差分重量的角度，给出了2类具有一般形式的6轮ARIAR的不可能差分的结构和计数，从理论上证明了能够达到目前研究最优的6轮ARIA的所有不可能差分.研究结果表明，在输入输出差分重量为10的条件下，攻击6轮ARIA所需的数据量为2120个选择明文，计算量为294.5次6轮加密.

关键词: 密码学, 不可能差分分析, ARIA分组密码, 数据复杂性

Abstract: This paper studied the security of the block cipher ARIA against impossible differential cryptanalysis. By analyzing the property of the diffusion transformation, a new kind of nontrivial 6-round impossible differential was presented. Generally, considering the weigh of differential, these two different kinds of impossible differential structures and the count were proposed. Based on this, we can give out all the number of these two kinds 6-round impossible differential in theory. It is shown that, when guessing the input-and-output differential weight of 10, there are only two kinds of impossible differential and all of them can be used to attack the 6-round ARIA with the best result by now: the data complexity is 2120 chosen plaintexts, and the time complexity is 294.5 encryptions of 6-round ARIA.

Key words: cryptography, impossible differential cryptanalysis, ARIA block cipher, data complexity

中图分类号:

TN918.1

张磊, 郭建胜. ARIA的不可能差分分析[J]. 上海交通大学学报（自然版）, 2011, 45(07): 1063-1067.

ZHANG Lei, GUO Jian-Sheng. Impossible Differential Cryptanalysis of ARIA[J]. Journal of Shanghai Jiaotong University, 2011, 45(07): 1063-1067.

参考文献

［1］Daesung K, Jaesung K, Sangwoo P, et al. New block cipher: ARIA［C］//Information Security and Cryptology (ICISC 2003). LNCS 2971. Seoul: SpringerVerlag Press, 2003: 432445.

［2］李刚, 胡予濮, 李洁. 低轮ARIA的不可能差分［J］. 计算机研究与发展, 2006, 43(增刊): 244248.

LI Gang, HU Yupu, LI Jie. Impossible differential cryptanalysis on reduced ARIA［J］. Journal of Computer Research and Development, 2006, 43(Supl.): 244248.

［3］Wu W L, Zhang W T, Feng D G. Impossible differential cryptanalysis of reducedround ARIA and Camellia［J］. Journal of Computer Science and Technology, 2007, 22(3): 449456.

［4］Zhang P, Li R L, Sun B, et al. New impossible differential cryptanalysis of ARIA［EB/OL］. (2008)［20100801］. http://eprint.iacr.org/2008/227.

［5］李申华. 对称密码算法ARIA和Salsa20的安全性分析［D］. 济南: 山东大学数学与科学学院, 2008.

［6］Ewan F, Michael G, Stefan L. Attacking reduced rounds of the ARIA block cipher［EB/OL］. (2009)［20100801］. http://eprint,iacr.org/2009/334.

［7］Alex B, Christophe D, Joseph L, et al. Security and performance analysis of ARIA. Version 1.2［EB/OL］. (20030107)［20100801］.http://www.nsri.re.kr/ARIA/doc.

［8］Li Y J, Wu W L, Zhang L. Integral attacks on reducedround ARIA block cipher［C］//ISPEC 2010. LNCS 6047. Seoul: SpringerVerlag, 2010: 1929.

［9］Tang X H, Sun B, Li R L, et al. A meetinthemiddle attack on ARIA［EB/OL］. (2010)［20100801］. http: // www.eprint.org/2010/168.pdf.

［10］Kim J, Hong S, Sung J, et al. Impossible differential cryptanalysis for block cipher structures［C］//Indocrypt 2003. LNCS 2904. New Delhi: SpringerVerlag Press, 2003: 8296.

［11］吴文玲, 张蕾. 不可能差分密码分析研究进展［J］. 系统科学与数学, 2008, 28(8): 971983.

WU Wenling, ZHANG Lei. The stateoftheart of research on impossible differential cryptanalysis［J］. Journal of System Science and Mathematical Sciences, 2008, 28(8): 971983.

［12］Tsunoo Y, Tsujihara E， Shigeri M, et al. Impossible differential cryptanalysis of CLEFIA［C］//FSE 2008. LNCS 5086. Switzerland: SpringerVerlag Press, 2008: 289302.

[1]	牛志华, 苑璨, 孔得宇. 计算周期序列k-错线性复杂度的混合遗传算法[J]. 上海交通大学学报, 2020, 54(6): 599-606.
[2]	张磊，曹珍富. 一个适合分布式网络的属性基加密方案 [J]. 上海交通大学学报（自然版）, 2010, 44(11): 1507-1512.

ARIA的不可能差分分析

Impossible Differential Cryptanalysis of ARIA

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 2

编辑推荐

Metrics

本文评价