动态新闻
当前位置: 首页 > 动态新闻 > 正文

题 目: Zero Correlation Linear Cryptanalysis with Reduced Data Complexity

报告人: 王美琴 教授

山东大学数学学院

时 间: 2012年4月24日(周二)上午9:00

地 点: 清华大学高等研究院 科学馆322报告厅

报告摘要:

Zero correlation linear cryptanalysis is a novel key recovery technique for block ciphers proposed. It is based on linear approximations with probability of exactly 1/2 (which corresponds to the zero correlation). Some block ciphers turn out to have multiple linear approximations with correlation zero for each key over a considerable number of rounds. Zero correlation linear cryptanalysis is the counterpart of impossible differential cryptanalysis in the domain of linear cryptanalysis, though having many technical distinctions and sometimes resulting in stronger attacks. We propose a statistical technique to significantly reduce the data complexity using the high number of zero correlation linear approximations available. We also identify zero correlation linear approximations for 14 and 15 rounds of TEA and XTEA. Those result in key-recovery attacks for 21-round TEA and 25-round XTEA, while requiring less data than the full code book. In the single secret key setting, these are structural attacks breaking the highest number of rounds for both ciphers.

上一篇:“科学与创新”系列报告(二)

下一篇:Spin-transfer torques and emergent electrodynamics in magnetic skyrmion crystals