Improved zero-sum distinguisher for full round Keccak-f permutation 被引量：8

Improved zero-sum distinguisher for full round Keccak-f permutation

导出

摘要 Keccak is one of the five hash functions selected for the final round of the SHA-3 competition,and its inner primitive is a permutation called Keccak-f.In this paper,we observe that for the inverse of the only nonlinear transformation in Keccak-f,the algebraic degree of any output coordinate and the one of the product of any two output coordinates are both 3,which is 2 less than its size of 5.Combining this observation with a proposition on the upper bound of the degree of iterated permutations,we improve the zero-sum distinguisher for the Keccak-f permutation with full 24 rounds by lowering the size of the zero-sum partition from 21590 to 21575. Keccak is one of the five hash functions selected for the final round of the SHA-3 competition, and its inner primitive is a permu- tation called Keccak-f. In this paper, we observe that for the inverse of the only nonlinear transformation in Keccak-f, the algebraic degree of any output coordinate and the one of the product of any two output coordinates are both 3, which is 2 less than its size of 5. Combining this observation with a proposition on the upper bound of the degree of iterated permutations, we improve the zero-sum distinguisher for the Keccak-fpermutation with full 24 rounds by lowering the size of the zero-sum partition from 2^1590 to 2^1575.

作者 DUAN Ming LAI XueJia

机构地区 Department of Computer Science and Engineering Basic Courses Department

出处《Chinese Science Bulletin》 SCIE CAS 2012年第6期694-697,共4页

基金 supported by the National Natural Science Foundation of China (60573032,60773092 and 61073149) Research Fund for the Doctoral Program of Higher Education of China (20090073110027)

关键词置换非线性变换哈希函数坐标输出排列迭代 hash functions, higher order differentials, algebraic degree, zero-sum, SHA-3

分类号 O175.29 [理学—数学] TP301.6 [理学—基础数学]

引文网络
相关文献

参考文献4

1Boura C,Canteaut A. Zero-sum distinguishers for iterated permutations and application to Keccak-f and Hamsi-256. In: Proceedings of the 17th International Workshop on Selected Areas in Cryptography 2010 Aug 12 13,Waterloo,Ontario,Canada. Waterloo: LNCS Springer Press,2010. 1-17. 被引量：1
2Boura C,Canteaut A,Cannière C D. Higher-order differential properties of Keccak and Luffa,In: Proceedings of the 18th International Workshop on Fast Software Encryption 2011 Feb 14 16,Lyngby, Denmark. Lyngby: LNCS Springer Press,2011. 252-269. 被引量：1
3Lai X J. Higher order derivatives and differential cryptanalysis. In: Communications and Cryptography: Two Sides of One Tapestry 1994,Switzerland. Switzerland: Kluwer Adademic Publishers,1994. 227-233. 被引量：1
4Canteaut A,Videau M. Degree of composition of highly nonlinear functions and applications to higher order differential cryptanalysis. In: Advances in Cryptology-EUROCRYPT 2002,International Conference on the Theory and Applications of Cryptographic Techniques, Apr 28 May 2,Amsterdam,The Netherlands. Amsterdam: LNCS Springer Press,2002. 518-533. 被引量：1

同被引文献63

1王后珍,张焕国,伍前红,张雨,李春雷,张欣雨.多变量Hash函数的构造理论与方法[J].中国科学：信息科学,2010,40(10):1299-1311. 被引量：4
2WANG Xiaoyun,FENG Dengguo,YU Xiuyuan.An attack on hash function HAVAL-128[J].Science in China(Series F),2005,48(5):545-556. 被引量：9
3BERTONI G,DAEMEN J,PEETERS,M,et al.The Keccak[J].Lecture Notes in Computer Science,2013,7881:313-314. 被引量：1
4BERTONI G J,DAEMEN J,PEETERS M,et al.Cryptographic sponge functions,January,2011,http://sponge,noekeon.org. 被引量：1
5DINUR I,DUNKELMAN O,SHAMIR A.New at- tacks on Keccak-224 and Keccak-256[C]//Fast Soft- ware Encryption.Heidelberg:Springer,2012:442-461. 被引量：1
6DINUR I,DUNKELMAN O,SHAMIR A.Collision attacks on up to 5 rounds of SHA-3 using generalized internal differentials[C]// Fast Software Encryption.Heidelberg:Springer,2014:219-240. 被引量：1
7NAYA-PLASENCIA M,ROCK A,MEIER I Prac- tical Analysis of Reduced-Round Keccak[M].Heidel- berg:Springer,2011:236-254. 被引量：1
8AUMASSON J P,MEIER W.Zero-sum distinguish- ers for reduced Keccak-f and for the core functions of Luffa and Hamsi[C].ACM Conference on Computer & Communications Security,Chicago:ACM,2009:1-4. 被引量：1
9MORAWIECKI P,PIEPRZYK J,SREBRNY M,et al.Preimage attacks on the round-reduced Keccak with the aid of differential cryptanalysis[J].Eprint Iacr Org,2013:2003:561. 被引量：1
10MORAWIECKI P,PIEPRZYK J,SREBRNY M.Rota- tional cryptanalysis of round-reduced Keccak[C]// Fast Software Encryption.Heidelberg;Springer,2014:241-262. 被引量：1

引证文献8

1李建瑞,汪鹏君,张跃军.SHA-3算法的抗原象攻击性能优化[J].浙江大学学报（理学版）,2016,43(1):97-102.
2王淦,张文英.SHA-3的安全性分析[J].计算机应用研究,2016,33(3):851-854. 被引量：3
3王小云,于红波.密码杂凑算法综述[J].信息安全研究,2015,1(1):19-30. 被引量：24
4王小云,于红波.SM3密码杂凑算法[J].信息安全研究,2016,2(11):983-994. 被引量：72
5姚键.国产商用密码算法研究及性能分析[J].计算机应用与软件,2019,36(6):327-333. 被引量：27
6YE Chendong,TIAN Tian.New Insights into Divide-and-Conquer Attacks on the Round-Reduced Keccak-MAC[J].Chinese Journal of Electronics,2019,28(4):698-705.
7龚征.轻量级Hash函数研究[J].密码学报,2016,3(1):1-11. 被引量：6
8刘新光,周界,于红波.缩减轮数的Keccak区分器攻击[J].密码学报,2017,4(5):431-446.

二级引证文献117

1邓建球,方轶,丛林虎,李海君.基于改进国密算法与区块链的数据登记系统[J].兵器装备工程学报,2020,0(1):122-125. 被引量：2
2罗军舟,杨明,凌振,吴文甲,顾晓丹.网络空间安全体系与关键技术[J].中国科学：信息科学,2016,46(8):939-968. 被引量：59
3郑彦斌,周星辰.密码学课程的教学探索[J].大众科技,2017,19(2):88-89. 被引量：3
4周扬,龚畅,徐平平,王伟.Hash函数结合相互认证的智能卡远程双向安全认证方案[J].计算机测量与控制,2017,25(6):115-119. 被引量：2
5邢维哲.国密SM2密码算法的C语言实现[J].中国新通信,2017,19(18):96-98. 被引量：2
6张俊贤,汪丽,安晓江.国产安全浏览器技术研究[J].信息安全研究,2018,4(1):31-39. 被引量：3
7刘书勇,付义伦.基于PKI技术的可搜索云加密存储系统[J].软件导刊,2018,17(2):182-185. 被引量：2
8张俊贤,汪丽,柳晶,王溢.电子文件真实性保障技术研究[J].信息安全研究,2018,4(5):458-466. 被引量：3
9任飞,刘贤洪.数字电视条件接收系统的密钥协商与认证算法[J].陕西理工大学学报（自然科学版）,2018,34(3):23-27.
10吴邱涵,胡卫.基于SM2算法和区块链的移动端身份认证协议设计[J].网络与信息安全学报,2018,4(9):60-65. 被引量：9

1肖新光.SHA-3花落Keccak[J].程序员,2012(11):14-14.
2LI Xin-she ZHAO Zhi-hui YAO Jun-ping.The analysis and research on the APN permutation property[J].通讯和计算机（中英文版）,2009,6(6):17-19.
3刘花,包小敏.SHA-3候选算法Keccak的Matlab设计与实现[J].计算机科学,2012,39(B06):425-428. 被引量：3
4LIU Jiye,ZHOU Yongbin,YANG Shuguo,FENG Dengguo.Generic Side-channel Distinguisher Based on Kolmogorov-Smirnov Test： Explicit Construction and Practical Evaluation[J].Chinese Journal of Electronics,2012,21(3):547-553. 被引量：1
5王春红,李艳萍,张力.Keccak算法介绍与分析[J].现代通信技术,2013(4):41-44.
6王玉奇,李浪.Keccak密码算法的FPGA实现[J].福建电脑,2016,32(6):16-18.
7王淦,张文英.SHA-3轮函数中χ及θ变换的性质研究[J].计算机工程与科学,2015,37(2):281-287.
8Sun Wenjie.Research on General Permutation Encryption Module Based on Chaos Theory[J].International Journal of Technology Management,2014(7):58-61.
9王淦,张文英.SHA-3的安全性分析[J].计算机应用研究,2016,33(3):851-854. 被引量：3
10吴武飞,王奕,李仁发.可重构Keccak算法设计及FPGA实现[J].计算机应用,2012,32(3):864-866. 被引量：4

Chinese Science Bulletin

2012年第6期

浏览历史

内容加载中请稍等...

Improved zero-sum distinguisher for full round Keccak-f permutation 被引量：8

参考文献4

同被引文献63

引证文献8

二级引证文献117

相关作者

相关机构

相关主题

浏览历史