Multidimensional Linear Cryptanalysis of Feistel Ciphers
-
Published:2023-12-08
Issue:4
Volume:2023
Page:1-27
-
ISSN:2519-173X
-
Container-title:IACR Transactions on Symmetric Cryptology
-
language:
-
Short-container-title:ToSC
Author:
Aşkın Özdemir Betül,Beyne Tim,Rijmen Vincent
Abstract
This paper presents new generic attacks on Feistel ciphers that incorporate the key addition at the input of the non-invertible round function only. This feature leads to a specific vulnerability that can be exploited using multidimensional linear cryptanalysis. More specifically, our approach involves using key-independent linear trails so that the distribution of a combination of the plaintext and ciphertext can be computed. This makes it possible to use the likelihood-ratio test as opposed to the χ2 test. We provide theoretical estimates of the cost of our generic attacks and verify these experimentally by applying the attacks to CAST-128 and LOKI91. The theoretical and experimental findings demonstrate that the proposed attacks lead to significant reductions in data-complexity in several interesting cases.
Publisher
Universitatsbibliothek der Ruhr-Universitat Bochum
Subject
Applied Mathematics,Computational Mathematics,Computer Science Applications,Software