Midori64分组密码算法的积分攻击

积分攻击是一种重要的密钥恢复攻击方法，已被广泛应用于多种分组算法分析任务。Midori64算法是一种轻量级分组密码算法，为对其进行积分攻击，构建3个6轮零相关区分器，将其分别转化为6轮平衡积分区分器并合成为一个性质优良的6轮零和积分区分器，将该零和积分区分器向前扩展1轮得到一个7轮零和积分区分器。分别采用部分和技术与快速Walsh-Hadamard变换技术，得到Midori64算法的10轮积分攻击和11轮积分攻击。分析结果表明，10轮积分攻击的数据复杂度为2⁴⁰个明密文对，时间复杂度为2^67.85次10轮加密运算，11轮积分攻击的数据复杂度为2^40.09个明密文对，时间复杂度为2^117.37次11轮加密运算。

Integral Attacks on Midori64

Proven to be an important key recovery method,the technique of integral attacks has been widely used in the analysis of block ciphers.This paper describes an attempt at integral attacks on the lightweight block cipher,Midori64.Three 6-round zero-correlation distinguishers are constructed,transformed into three 6-round balanced integral distinguishers,and then merged into one excellent 6-round zero-sum integral distinguisher,which extends one round forward to obtain a 7-round zero-sum integral distinguisher.On this basis,the partial-sum technique and the fast Walsh-Hadamard transform technique are used for the 10-round and 11-round integral attacks on Midori64.The analysis results show that the data complexity and the time complexity of the 10-round integral attacks are 2⁴⁰ and 2^67.85 respectively,and those of 11-round attacks are 2^40.09 and 2^117.37 respectively.