计算机应用 ›› 2010, Vol. 30 ›› Issue (3): 674-676.

• 信息安全 • 上一篇    下一篇

适于硬件实现的S盒构造方法

杨宏志1,韩文报2,赵龙2   

  1. 1. 郑州信息工程大学信息工程学院
    2.
  • 收稿日期:2009-09-06 修回日期:2009-10-23 发布日期:2010-03-14 出版日期:2010-03-01
  • 通讯作者: 杨宏志
  • 基金资助:
    国家自然科学基金重大研究计划;国家“863”计划

Construction method of S-box suitable for hardware implementation

  • Received:2009-09-06 Revised:2009-10-23 Online:2010-03-14 Published:2010-03-01

摘要: 有限域上的乘法求逆变换和仿射变换混合后良好的密码学性质是Rijndeal、Camellia、SMS4等分组密码算法S盒设计的基础,总结了三种分组密码算法的S盒密码学性质,在此基础上提炼出一类S盒的构造模型,并根据硬件实现的特点,利用循环矩阵给出了一大批S盒。与Rijndeal算法S盒相比,此类S盒的密码学性质更加优良,同时硬件实现的资源开销与Rijndeal算法S盒大体相当。

关键词: 分组密码, S盒, 硬件实现

Abstract: The design of S-box was used in some block ciphers such as Rijndeal, Camellia, SMS4, which was based on good cryptographic properties coming from integration of inverse transformation over finite fields and affine transformation. The authors investigated cryptographic properties of the three block ciphers above, and presented a kind of S-box construction model. According to the features of hardware implementation, a lot of S-boxes were constructed by using circular matrix. It claims that the new kind of S-box possesses some better properties compared with the Rijndeal S-box, and there is no significant difference in cost of hardware implementation between them.

Key words: block cipher, S-box, implementation with hardware circuits