Upper bounds of maximum values of average differential and linear characteristic probabilities of feistel cipher with adder modulo 2^m
The paper discusses the Feistel cipher with a block size of n = 2m, where the addition of a round key and a part of an incoming massage in each round is carried out modulo 2^m. In order to evaluate the security of such a cipher against differential and linear cryptanalyses, the new parameters of c...
Gespeichert in:
| Datum: | 2006 |
|---|---|
| Hauptverfasser: | , |
| Format: | Artikel |
| Sprache: | English |
| Veröffentlicht: |
Інститут математики НАН України
2006
|
| Online Zugang: | http://dspace.nbuv.gov.ua/handle/123456789/4438 |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| Назва журналу: | Digital Library of Periodicals of National Academy of Sciences of Ukraine |
| Zitieren: | Upper bounds of maximum values of average differential and linear characteristic probabilities of feistel cipher with adder modulo 2^m / A. Alekseychuk, L. Kovalchuk // Theory of Stochastic Processes. — 2006. — Т. 12 (28), № 1-2. — С. 20–32. — Бібліогр.: 12 назв.— англ. |
Institution
Digital Library of Periodicals of National Academy of Sciences of Ukraine| Zusammenfassung: | The paper discusses the Feistel cipher with a block size of n = 2m, where the addition
of a round key and a part of an incoming massage in each round is carried out
modulo 2^m. In order to evaluate the security of such a cipher against differential and linear cryptanalyses, the new parameters of cipher s-boxes are introduced. The upper bounds of maximum average differential and linear probabilities of one round
encryption transformation and the upper bounds of maximum average differential and
linear characteristics probabilities of the whole cipher are obtained. The practical
security of the cipher GOST (with independent and equiprobable random round keys) against differential and linear cryptanalysis is also evaluated. To the authors’ mind, the obtained results allow one to expand the basic statements concerning the practical security of Markov (Feistel and SPN) ciphers against conventionally differential and
linear attacks to a cipher of the type under study. |
|---|