Journal of Computer Applications ›› 2017, Vol. 37 ›› Issue (9): 2572-2575.DOI: 10.11772/j.issn.1001-9081.2017.09.2572

Previous Articles     Next Articles

New security analysis of several kinds of high-level cryptographical S-boxes

ZHAO Ying1, YE Tao2, WEI Yongzhuang1,3   

  1. 1. Guangxi Key Laboratory of Cryptography and Information Security, Guilin University of Electronic Technology, Guilin Guangxi 541004, China;
    2. Guangxi Cooperative Innovation Center of cloud computing and Big Data, Guilin University of Electronic Technology, Guilin Guangxi 541004, China;
    3. Guangxi Key Laboratory of Wireless Wideband Communication and Signal Processing, Guilin University of Electronic Technology, Guilin Guangxi 541004, China
  • Received:2017-03-17 Revised:2017-04-29 Online:2017-09-10 Published:2017-09-13
  • Supported by:
    This work is partially supported by the National Natural Science Foundation of China (61572148), the Guangxi Natural Science Fund (Fund for Distinguished Young Scholars) (2015GXNSFGA139007), the Project of Outstanding Young Teachers Training in Higher Education Institutions of Guangxi (the second period).

几类高强度密码S盒的安全性新分析

赵颖1, 叶涛2, 韦永壮1,3   

  1. 1. 桂林电子科技大学 广西密码学与信息安全重点实验室, 广西 桂林 541004;
    2. 桂林电子科技大学 广西云计算与大数据协同创新中心, 广西 桂林 541004;
    3. 桂林电子科技大学 广西无线宽带通信与信号处理重点实验室, 广西 桂林 541004
  • 通讯作者: 韦永壮,walker_wyz@guet.edu.cn
  • 作者简介:赵颖(1991-),女,陕西咸阳人,硕士研究生,主要研究方向:分组密码的分析与设计;叶涛(1991-),男,黑龙江伊春人,硕士研究生,主要研究方向:分组密码的设计与分析;韦永壮(1976-),男,广西田阳人,教授,博士,主要研究方向:密码学。
  • 基金资助:
    国家自然科学基金资助项目(61572148);广西自然科学基金(杰出青年基金)资助项目(2015GXNSFGA139007);广西高等学校优秀中青年骨干教师培养工程项目(第2期)。

Abstract: Focusing on the problem whether there are new security flaws of several kinds of high-level cryptographic S-boxes, an algorithm for solving the nonlinear invariant function of S-boxes was proposed, which is mainly based on the algebraic relationship between the input and output of the cryptographic S-boxes. Using the proposed algorithm, several kinds of S-boxes were tested and it was found that several of them had the same nonlinear invariant function. In addition, if these S-boxes were used to non-linear parts of the block cipher Midori-64, a new variant algorithm would be obtained. The security analysis was carried out by non-linear invariant attack. The analytical results show that the Midori-64 variant is faced with serious secure vulnerability. In other words, there exist 264 weak keys when nonlinear invariant attack is applied to the Midori-64 variant, meanwhile data, time and storage complexity can be neglected, consequently some high-level cryptographic S-boxes have security flaws.

Key words: S-box, nonlinear invariant function, Midori-64 algorithm, nonlinear invariant attack, weak key

摘要: 针对几类高强度密码S盒是否存在新的安全性漏洞问题,提出了一种求解S盒非线性不变函数的算法。该算法主要基于密码S盒输入和输出的代数关系来设计。利用该算法对这几类密码S盒进行测试,发现其中几类存在相同的非线性不变函数;此外,如果将这些S盒使用于分组密码Midori-64的非线性部件上,将会得到一个新的变体算法。利用非线性不变攻击对其进行安全性分析,结果表明:该Midori-64变体算法存在严重的安全漏洞,即在非线性不变攻击下,存在264个弱密钥,并且攻击所需的数据、时间及存储复杂度可忽略不计,因此这几类高强度密码S盒存在新的安全缺陷。

关键词: S盒, 非线性不变函数, Midori-64算法, 非线性不变攻击, 弱密钥

CLC Number: