New security analysis of several kinds of high-level cryptographical S-boxes

doi:10.11772/j.issn.1001-9081.2017.09.2572

Journal of Computer Applications ›› 2017, Vol. 37 ›› Issue (9): 2572-2575.DOI: 10.11772/j.issn.1001-9081.2017.09.2572

Previous Articles Next Articles

New security analysis of several kinds of high-level cryptographical S-boxes

ZHAO Ying¹, YE Tao², WEI Yongzhuang^1,3

1. Guangxi Key Laboratory of Cryptography and Information Security, Guilin University of Electronic Technology, Guilin Guangxi 541004, China;
2. Guangxi Cooperative Innovation Center of cloud computing and Big Data, Guilin University of Electronic Technology, Guilin Guangxi 541004, China;
3. Guangxi Key Laboratory of Wireless Wideband Communication and Signal Processing, Guilin University of Electronic Technology, Guilin Guangxi 541004, China

Received:2017-03-17 Revised:2017-04-29 Online:2017-09-10 Published:2017-09-13
Supported by:
This work is partially supported by the National Natural Science Foundation of China (61572148), the Guangxi Natural Science Fund (Fund for Distinguished Young Scholars) (2015GXNSFGA139007), the Project of Outstanding Young Teachers Training in Higher Education Institutions of Guangxi (the second period).

几类高强度密码S盒的安全性新分析

赵颖¹, 叶涛², 韦永壮^1,3

1. 桂林电子科技大学广西密码学与信息安全重点实验室, 广西桂林 541004;
2. 桂林电子科技大学广西云计算与大数据协同创新中心, 广西桂林 541004;
3. 桂林电子科技大学广西无线宽带通信与信号处理重点实验室, 广西桂林 541004

通讯作者: 韦永壮,walker_wyz@guet.edu.cn
作者简介:赵颖(1991-),女,陕西咸阳人,硕士研究生,主要研究方向:分组密码的分析与设计;叶涛(1991-),男,黑龙江伊春人,硕士研究生,主要研究方向:分组密码的设计与分析;韦永壮(1976-),男,广西田阳人,教授,博士,主要研究方向:密码学。
基金资助:
国家自然科学基金资助项目（61572148）；广西自然科学基金（杰出青年基金）资助项目（2015GXNSFGA139007）；广西高等学校优秀中青年骨干教师培养工程项目（第2期）。

Abstract

Abstract: Focusing on the problem whether there are new security flaws of several kinds of high-level cryptographic S-boxes, an algorithm for solving the nonlinear invariant function of S-boxes was proposed, which is mainly based on the algebraic relationship between the input and output of the cryptographic S-boxes. Using the proposed algorithm, several kinds of S-boxes were tested and it was found that several of them had the same nonlinear invariant function. In addition, if these S-boxes were used to non-linear parts of the block cipher Midori-64, a new variant algorithm would be obtained. The security analysis was carried out by non-linear invariant attack. The analytical results show that the Midori-64 variant is faced with serious secure vulnerability. In other words, there exist 2⁶⁴ weak keys when nonlinear invariant attack is applied to the Midori-64 variant, meanwhile data, time and storage complexity can be neglected, consequently some high-level cryptographic S-boxes have security flaws.

Key words: S-box, nonlinear invariant function, Midori-64 algorithm, nonlinear invariant attack, weak key

摘要： 针对几类高强度密码S盒是否存在新的安全性漏洞问题，提出了一种求解S盒非线性不变函数的算法。该算法主要基于密码S盒输入和输出的代数关系来设计。利用该算法对这几类密码S盒进行测试，发现其中几类存在相同的非线性不变函数；此外，如果将这些S盒使用于分组密码Midori-64的非线性部件上，将会得到一个新的变体算法。利用非线性不变攻击对其进行安全性分析，结果表明：该Midori-64变体算法存在严重的安全漏洞，即在非线性不变攻击下，存在2⁶⁴个弱密钥，并且攻击所需的数据、时间及存储复杂度可忽略不计，因此这几类高强度密码S盒存在新的安全缺陷。

关键词: S盒, 非线性不变函数, Midori-64算法, 非线性不变攻击, 弱密钥

CLC Number:

TP309.7

ZHAO Ying, YE Tao, WEI Yongzhuang. New security analysis of several kinds of high-level cryptographical S-boxes[J]. Journal of Computer Applications, 2017, 37(9): 2572-2575.

赵颖, 叶涛, 韦永壮. 几类高强度密码S盒的安全性新分析[J]. 计算机应用, 2017, 37(9): 2572-2575.

References

[1] LAI X. On the design and security of block ciphers[EB/OL].[2016-12-16]. https://www.researchgate.net/publication/242506184_On_the_design_and_security_of_block_ciphers.
[2] 草冠杰,马建设,程雪岷.基于组合式爬山算法提高S盒非线性度的方法[J].计算机应用, 2015,35(8):2195-2198.(CAO G J, MA J S, CHENG X M. Method for increasing S-box nonlinearity based on combination of hill climbing[J]. Journal of Computer Applications, 2015, 35(8):2195-2198.)
[3] BIHAM E, SHAMIR A. Differential cryptanalysis of the full 16-round DES[C]//Annual International Cryptology Conference, LNCS 740. Berlin:Springer, 1992:487-496.
[4] MATSUI M. Linear cryptanalysis method for DES cipher[C]//Workshop on the Theory and Application of of Cryptographic Techniques, LNCS 765. Berlin:Springer, 1993:386-397.
[5] BIHAM E. New types of cryptanalytic attacks using related keys[J]. Journal of Cryptology, 1994, 7(4):229-246.
[6] COURTOIS N T, PIEPRZYK J. Cryptanalysis of block ciphers with overdefined systems of equations[C]//International Conference on the Theory and Application of Cryptology and Information Security, LNCS 2501. Berlin:Springer, 2002:267-287.
[7] LEANDER G, ABDELRAHEEM M A, ALKHZAIMI H, et al. A cryptanalysis of PRINTcipher:the invariant subspace attack[C]//Annual Cryptology Conference, LNCS 6841. Berlin:Springer, 2011:206-221.
[8] LEANDER G, MINAUD B, RØNJOM S. A generic approach to invariant subspace attacks:cryptanalysis of Robin, iSCREAM and Zorro[C]//Annual International Conference on the Theory and Applications of Cryptographic Techniques. Berlin:Springer, 2015:254-283.
[9] TODO Y, LEANDER G, SASAKI Y. Nonlinear invariant attack:practical attack on full SCREAM, iSCREAM, and Midori64[EB/OL].[2016-11-06]. http://eprint.iacr.org/2016/732.pdf.
[10] GUO J, JEAN J, NIKOLIC I, et al. Invariant subspace attack against Midori64 and the resistance criteria for S-box designs[J]. IACR Transactions on Symmetric Cryptology, 2016, 2016(1):33-56.
[11] GUO J, PEYRIN T, POSCHMANN A, et al. The LED block cipher[C]//International Workshop on Cryptographic Hardware and Embedded Systems, LNCS 6917. Berlin:Springer, 2011:326-341.
[12] BANIK S, BOGDANOV A, ISOBE T, et al. Midori:a block cipher for low energy[C]//International Conference on the Theory and Application of Cryptology and Information Security, LNCS 9453. Berlin:Springer, 2014:411-436.

New security analysis of several kinds of high-level cryptographical S-boxes

几类高强度密码S盒的安全性新分析

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 8

Recommended Articles

Metrics

[1]	HU Zhihua, YAN Shuo, XIONG Kuanjiang. Dynamic S-box construction method and dynamic cryptography property analysis [J]. Journal of Computer Applications, 2016, 36(5): 1257-1261.
[2]	QIN Guanjie, MA Jianshe, CHENG Xuemin. Method for increasing S-box nonlinearity based on combination of hill climbing [J]. Journal of Computer Applications, 2015, 35(8): 2195-2198.
[3]	LI Lingchen, WEI Yongzhuang, ZHU Jialiang. Meet-in-the-middle attack on 11-round reduced 3D block cipher [J]. Journal of Computer Applications, 2015, 35(3): 700-703.
[4]	HE Yuan TIAN Simei. Block encryption algorithm based on chaotic S-box for wireless sensor network [J]. Journal of Computer Applications, 2013, 33(04): 1081-1084.
[5]	. Construction method of S-box suitable for hardware implementation [J]. Journal of Computer Applications, 2010, 30(3): 674-676.
[6]	. S-boxes reorganization algorithm for a class of block ciphers [J]. Journal of Computer Applications, 2009, 29(08): 2198-2199.
[7]	. New S-boxes for hardware implementation of AES [J]. Journal of Computer Applications, 2007, 27(4): 852-853.
[8]	;. Optimum algorithm of S-boxes based on fast convergence speed genetic algorithm [J]. Journal of Computer Applications, 2006, 26(4): 803-805.