On multidimensional linear cryptanalysis

Authors:
Phuong Ha Nguyen;Lei Wei;Huaxiong Wang;San Ling
Affiliations:
School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore;School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore;School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore;School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore
Venue:
ACISP'10 Proceedings of the 15th Australasian conference on Information security and privacy
Year:
2010

Citing 11
Cited 1

Linear cryptanalysis method for DES cipher

EUROCRYPT '93 Workshop on the theory and application of cryptographic techniques on Advances in cryptology
Hadamard matrix analysis and synthesis: with applications to communications and signal/image processing

Hadamard matrix analysis and synthesis: with applications to communications and signal/image processing
Introduction to Algorithms

Introduction to Algorithms
The First Experimental Cryptanalysis of the Data Encryption Standard

CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
Linear Cryptanalysis Using Multiple Approximations

CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
Linear Cryptanalysis of Reduced Round Serpent

FSE '01 Revised Papers from the 8th International Workshop on Fast Software Encryption
Improved and Multiple Linear Cryptanalysis of Reduced Round Serpent

Information Security and Cryptology
Experiments on the Multiple Linear Cryptanalysis of Reduced Round Serpent

Fast Software Encryption
Multidimensional Linear Cryptanalysis of Reduced Round Serpent

ACISP '08 Proceedings of the 13th Australasian conference on Information Security and Privacy
A New Technique for Multidimensional Linear Cryptanalysis with Applications on Reduced Round Serpent

Information Security and Cryptology --- ICISC 2008
Improving the time complexity of Matsui's linear cryptanalysis

ICISC'07 Proceedings of the 10th international conference on Information security and cryptology

Improving the algorithm 2 in multidimensional linear cryptanalysis

ACISP'11 Proceedings of the 16th Australasian conference on Information security and privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Matsui's Algorithms 1 and 2 with multiple approximations have been studied over 16 years. In CRYPTO'04, Biryukov et al. proposed a formal framework based on m statistically independent approximations. Started by Hermelin et al. in ACISP'08, a different approach was taken by studying m-dimensional combined approximations from m base approximations. Known as multidimensional linear cryptanalysis, the requirement for statistical independence is relaxed. In this paper we study the multidimensional Alg. 1 of Hermelin et al.. We derive the formula for N, the number of samples required for the attack and we improve the algorithm by reducing time complexity of the distillation phase from 2mN to 2m2m + mN, and that of the analysis phase from 22m to 3m2m. We apply the results on 4- and 9-round Serpent and show that Hermelin et al. actually provided a formal model for the hypothesis of Biryukov et al. in practice, and this model is now much more practical with our improvements.