Affiliation:
1. Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China
2. School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China
Abstract
Abstract
Rotational-XOR cryptanalysis is a very recent technique for ARX ciphers. In this paper, the probability propagation formula of RX-cryptanalysis in modular addition is extended, and the calculation of RX-difference probability for any rotation parameter ($0<k<n$) can be realized. By proposing a concept of RX-offset and constructing the corresponding distribution table, the propagation of RX-difference in modular addition can be derived from the propagation of XOR-difference. Combined with the improvement of the automatic search tool for XOR-differential characteristics of ARX ciphers, we only need to add one more operation in each round, i.e. traverse the possible value of RX-offset and XOR it with the output XOR-difference of modular addition, thus it can achieve the search for RX-differential characteristics. With this method, the RX-differential distinguisher of ARX-C primitives without or with linear key schedule can be searched. For the applications, we have obtained the third-party RX-cryptanalysis results for Alzette and CHAM for the first time as far as we know.
Funder
National Research and Development Program of China
National Natural Science Foundation of China
Publisher
Oxford University Press (OUP)
Reference48 articles.
1. HIGHT: A New Block Cipher Suitable for Low-resource Device;Hong,2006
2. The SIMON and Speck Families of Lightweight Block Ciphers. Cryptology ePrint Archive;Beaulieu,2013
3. SipHash: A Fast Short-input PRF;Aumasson,2012
4. Chaskey: An Efficient MAC Algorithm for 32-bit Microcontrollers;Mouha,2014
5. Design Strategies for ARX with Provable Bounds: SPARX and LAX;Dinu,2016