摘要
为了评估分组密码Piccolo的积分性质,提出Piccolo算法的5轮积分区分器,对无白化密钥的Piccolo进行了7轮和8轮攻击。其中,7轮攻击的数据复杂度为2^(17)个明文,时间复杂度为2^(20. 368)次7轮加密,8轮攻击的复杂度分别为2^(18)和2^(53. 000)。随后,将5轮区分器向解密方向扩展2轮,得到7轮区分器,对Piccolo进行了9轮攻击。若考虑白化密钥,数据复杂度为2^(48)个明文,时间复杂度为2^(52. 237)次9轮加密;若无白化密钥,复杂度均为2^(48)。据现有资料,这是首次评估Piccolo算法在积分攻击方面的安全性。
To evaluate block cipher Piccolo’s integral property,this paper first proposed a 5-round integral distinguisher of Piccolo,and used it to attack 7-round and 8-round on Piccolo which without whitening keys.The data complexity of the 7-round ana-lysis was 2 17 plaintexts,the time complexity was 2 20.368 times 7-round encryptions,and the complexity of 8-round analysis was 2 18 and 2 53.000 respectively.Then,it extended the 5-round distinguisher to another 2-round in the decryption direction and obtained a 7-round distinguisher,and attacked 9-round on Piccolo based on it.If there were whitening keys,the data complexity was 2 48 plaintexts,and the time complexity was 2 52.237 times 9-round encryptions,else the complexity was 2 48.According to the available information,it’s the first assessment of the Piccolo algorithm in terms of integral attack security.
作者
李艳俊
石宇婷
Li Yanjun;Shi Yuting(Dept.of Information Security,Beijing Electronic Science&Technology Institute,Beijing 100070,China)
出处
《计算机应用研究》
CSCD
北大核心
2018年第11期3413-3417,3440,共6页
Application Research of Computers
基金
中央高校基本科研业务费资助项目(2017LG04)
