Known-key distinguishers on type-1 Feistel scheme and near-collision attacks on its hashing modes |
| |
| Authors: | Le Dong Wenling Wu Shuang Wu Jian Zou |
| |
| Affiliation: | 1. College of Mathematics and Information Science, Henan Normal University, Xinxiang 453007, China2. Institute of Software, Chinese Academy of Sciences, Beijing 100190, China3. Graduate University of Chinese Academy of Sciences, Beijing 100149, China |
| |
| Abstract: | We present some known-key distinguishers for a type-1 Feistel scheme with a permutation as the round function. To be more specific, the 29-round known-key truncated differential distinguishers are given for the 256-bit type-1 Feistel scheme with an SP (substitution-permutation) round function by using the rebound attack, where the S -boxes have perfect differential and linear properties and the linear diffusion layer has a maximum branch number. For two 128-bit versions, the distinguishers can be applied on 25-round structures. Based on these distinguishers, we construct near-collision attacks on these schemes with MMO (Matyas-Meyer-Oseas) and MP (Miyaguchi-Preneel) hashing modes, and propose the 26-round and 22-round near-collision attacks for two 256-bit schemes and two 128-bit schemes, respectively. We apply the near-collision attack on MAME and obtain a 26-round near-collision attack. Using the algebraic degree and some integral properties, we prove the correctness of the 31-round known-key integral distinguisher proposed by Sasaki et al. We show that if the round function is a permutation, the integral distinguisher is suitable for a type-1 Feistel scheme of any size. |
| |
| Keywords: | known-key block cipher generalized Feistel scheme type-1 rebound attack integral distinguisher algebraic degree |
| 本文献已被 SpringerLink 等数据库收录! |
| 点击此处可从《Frontiers of Computer Science》浏览原始摘要信息 |
|
点击此处可从《Frontiers of Computer Science》下载全文 |
|
