New multiset attacks on rijndael with large blocks

Authors:
Jorge Nakahara;Daniel Santana de Freitas;Raphael C. -W. Phan
Affiliations:
UniSantos, Brazil;LabSEC, INE, Federal University of Santa Catarina, Brazil;iSECURES Lab, Swinburne University of Technology (Sarawak Campus), Malaysia
Venue:
Mycrypt'05 Proceedings of the 1st international conference on Progress in Cryptology in Malaysia
Year:
2005

Citing 9
Cited 6

The Data Encryption Standard (DES) and its strength against attacks

IBM Journal of Research and Development
The Design of Rijndael

The Design of Rijndael
Improved Impossible Differential Cryptanalysis of Rijndael and Crypton

ICISC '01 Proceedings of the 4th International Conference Seoul on Information Security and Cryptology
Square-like Attacks on Reduced Rounds of IDEA

SAC '02 Revised Papers from the 9th Annual International Workshop on Selected Areas in Cryptography
Structural Cryptanalysis of SASAS

EUROCRYPT '01 Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
The Block Cipher Square

FSE '97 Proceedings of the 4th International Workshop on Fast Software Encryption
Improved Cryptanalysis of Rijndael

FSE '00 Proceedings of the 7th International Workshop on Fast Software Encryption
Integral Cryptanalysis

FSE '02 Revised Papers from the 9th International Workshop on Fast Software Encryption
The Saturation Attack - A Bait for Twofish

FSE '01 Revised Papers from the 8th International Workshop on Fast Software Encryption

Improved Impossible Differential Attacks on Large-Block Rijndael

ISC '08 Proceedings of the 11th international conference on Information Security
Distinguishers for Ciphers and Known Key Attack against Rijndael with Large Blocks

AFRICACRYPT '09 Proceedings of the 2nd International Conference on Cryptology in Africa: Progress in Cryptology
Improving integral attacks against Rijndael-256 up to 9 rounds

AFRICACRYPT'08 Proceedings of the Cryptology in Africa 1st international conference on Progress in cryptology
Known-key attacks on Rijndael with large blocks and strengthening shiftrow parameter

IWSEC'10 Proceedings of the 5th international conference on Advances in information and computer security
Impossible-differential attacks on large-block Rijndael

ISC'07 Proceedings of the 10th international conference on Information Security
Improved impossible differential attacks on large-block rijndael

ICISC'12 Proceedings of the 15th international conference on Information Security and Cryptology

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper presents the first security evaluation of the Rijndael cipher with block sizes larger than 128 bits. We describe new higher-order multiset distinguishers for such large-block instances of Rijndael. Both Rijndael and the AES were designed to resist differential and linear cryptanalysis, which is indicated by the number of active S-boxes (minimum of 25 for 4-round AES) for the best differential and linear distinguishers, for which the probability and correlation values are estimated as 2−150 and 2−75. All of these Rijndael variants have been formally defined by their designers as extensions of the AES. We describe new 5-round distinguishers for Rijndael with 160 up to 256-bit blocks, all holding with certainty, and with many more than 25 active S-boxes.