Attacking 9 and 10 Rounds of AES-256

Authors:
Ewan Fleischmann;Michael Gorski;Stefan Lucks
Affiliations:
Bauhaus-University Weimar, Germany;Bauhaus-University Weimar, Germany;Bauhaus-University Weimar, Germany
Venue:
ACISP '09 Proceedings of the 14th Australasian Conference on Information Security and Privacy
Year:
2009

Citing 10
Cited 2

The Design of Rijndael

The Design of Rijndael
Related-key cryptanalysis of 3-WAY, Biham-DES, CAST, DES-X, NewDES, RC2, and TEA

ICICS '97 Proceedings of the First International Conference on Information and Communication Security
Cryptanalysis of LOKI91

ASIACRYPT '92 Proceedings of the Workshop on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
The Boomerang Attack

FSE '99 Proceedings of the 6th International Workshop on Fast Software Encryption
Improved Cryptanalysis of Rijndael

FSE '00 Proceedings of the 7th International Workshop on Fast Software Encryption
New Related-Key Boomerang Attacks on AES

INDOCRYPT '08 Proceedings of the 9th International Conference on Cryptology in India: Progress in Cryptology
Related-key rectangle attacks on reduced versions of SHACAL-1 and AES-192

FSE'05 Proceedings of the 12th international conference on Fast Software Encryption
The boomerang attack on 5 and 6-round reduced AES

AES'04 Proceedings of the 4th international conference on Advanced Encryption Standard
Related-Key boomerang and rectangle attacks

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Related-key rectangle attacks on reduced AES-192 and AES-256

FSE'07 Proceedings of the 14th international conference on Fast Software Encryption

Tweaking AES

SAC'10 Proceedings of the 17th international conference on Selected areas in cryptography
The (related-key) impossible boomerang attack and its application to the AES block cipher

Designs, Codes and Cryptography

Quantified Score

Hi-index	0.00

Visualization

Abstract

The AES-256 has received less attention in cryptanalysis than the 192 or 128-bit versions of the AES. In this paper we propose new attacks on 9 and 10-round AES-256. In particular we present a 9-round attack on AES-256 which has the lowest data complexity of all known 9-round attacks. Also, our 10-round attack has a lower data complexity than all known attacks on AES-256. Also, our attack is the first that uses a key differential with probability below one in combination with a related-key boomerang attack. This leads to better related-key differentials which contain less non-zero byte differences and rounds with zero byte differences in each byte of a subkey difference.