We introduce a new property for mixing layers which guarantees protection against algebraic attacks based on the imprimitivity of the group generated by the round functions. Mixing layers satisfying this property are called non-type-preserving. Our main result is to characterize such mixing layers by providing a list of necessary and sufficient conditions on the structure of their underlying binary matrices. Then we show how several families of linear maps are non-type-preserving, including the mixing layers of AES, GOST and PRESENT. Finally we prove that the group generated by the round functions of an SPN cipher with addition modulo 2 n as key mixing function is primitive if its mixing layer satisfies this property.
Type-preserving matrices and security of block ciphers
Aragona, Riccardo
;
2019-01-01
Abstract
We introduce a new property for mixing layers which guarantees protection against algebraic attacks based on the imprimitivity of the group generated by the round functions. Mixing layers satisfying this property are called non-type-preserving. Our main result is to characterize such mixing layers by providing a list of necessary and sufficient conditions on the structure of their underlying binary matrices. Then we show how several families of linear maps are non-type-preserving, including the mixing layers of AES, GOST and PRESENT. Finally we prove that the group generated by the round functions of an SPN cipher with addition modulo 2 n as key mixing function is primitive if its mixing layer satisfies this property.| File | Dimensione | Formato | |
|---|---|---|---|
|
1930-5346_2019_2_235.pdf
solo utenti autorizzati
Tipologia:
Documento in Versione Editoriale
Licenza:
Dominio pubblico
Dimensione
428.21 kB
Formato
Adobe PDF
|
428.21 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
