基于仿射非正型变换的Lai-Massey模型的密码学缺陷

留言板

尊敬的读者、作者、审稿人, 关于本刊的投稿、审稿、编辑和出版的任何问题, 您可以本页添加留言。我们将尽快给您答复。谢谢您的支持!

姓名
邮箱
手机号码
标题
留言内容
验证码

基于仿射非正型变换的Lai-Massey模型的密码学缺陷

付立仕, 金晨辉

文章导航 > 电子与信息学报 > 2013 > 35(10): 2536-2540

付立仕, 金晨辉. 基于仿射非正型变换的Lai-Massey模型的密码学缺陷[J]. 电子与信息学报, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

引用本文:

付立仕, 金晨辉. 基于仿射非正型变换的Lai-Massey模型的密码学缺陷[J]. 电子与信息学报, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

Fu Li-Shi, Jin Chen-Hui. The Cryptographic Weakness of Lai-Massey Scheme with an Affine but not Orthomorphic Bijection[J]. Journal of Electronics & Information Technology, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

Citation:

Fu Li-Shi, Jin Chen-Hui. The Cryptographic Weakness of Lai-Massey Scheme with an Affine but not Orthomorphic Bijection[J]. Journal of Electronics & Information Technology, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

付立仕, 金晨辉. 基于仿射非正型变换的Lai-Massey模型的密码学缺陷[J]. 电子与信息学报, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

引用本文:

付立仕, 金晨辉. 基于仿射非正型变换的Lai-Massey模型的密码学缺陷[J]. 电子与信息学报, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

Fu Li-Shi, Jin Chen-Hui. The Cryptographic Weakness of Lai-Massey Scheme with an Affine but not Orthomorphic Bijection[J]. Journal of Electronics & Information Technology, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

Citation:

Fu Li-Shi, Jin Chen-Hui. The Cryptographic Weakness of Lai-Massey Scheme with an Affine but not Orthomorphic Bijection[J]. Journal of Electronics & Information Technology, 2013, 35(10): 2536-2540. doi: 10.3724/SP.J.1146.2012.01574

基于仿射非正型变换的Lai-Massey模型的密码学缺陷

doi: 10.3724/SP.J.1146.2012.01574

付立仕^{* 金晨辉,},
金晨辉

基金项目:

国家自然科学基金(61272488)资助课题

计量
- 文章访问数: 2562
- HTML全文浏览量: 129
- PDF下载量: 603
- 被引次数: 0
出版历程
- 收稿日期: 2012-12-04
- 修回日期: 2013-02-22
- 刊出日期: 2013-10-19

The Cryptographic Weakness of Lai-Massey Scheme with an Affine but not Orthomorphic Bijection

Fu Li-Shi^{* 金晨辉
,},
Jin Chen-Hui

摘要: Vaudenay(1999)从伪随机性的角度出发，证明了Lai-Massey模型中的变换应设计为正型置换或几乎正型置换。该文从抗差分攻击和线性攻击的角度重新考察了Lai-Massey模型双射的设计问题。证明了基于任意有限交换群设计的Lai-Massey模型，如果变换设计为该群上的仿射变换，则必须为正型置换，否则该算法将分别存在概率为1的差分对应和线性逼近，结论表明仿射的几乎正型置换并不适用于Lai-Massey模型的设计。此外，该文借助有限群的特征标引入了一种新的线性逼近方式，收集和刻画了一般有限交换群上Lai-Massey模型输入和输出的线性逼近关系。
- 密码学 /
- 有限交换群 /
- 差分分析 /
- 线性分析 /
- Lai-Massey模型 /
- 正型置换
Abstract: Vaudenay (1999) proved that the permutation in Lai-Massey scheme should be an orthomorphism or almost orthomorphism. This paper mainly focuses on the principle of the function in Lai-Massey scheme, which is described by its resistance to differential and linear attack. It shows that no matter how the group G is defined, ifis an affine function on G, then it should be defined as an orthomorphism, or else there exists a differentially characteristic with probability 1 and a linearly approximation with correlation coefficient 1, therefore it has potential security risk. Moreover, by the characteristic spectrum in finite group, a new linear relationship between the input and output of Lai-Massey scheme is introduced, which is used to describe the linear relationship lying between the input and the output of Lai-Massey scheme.
- Cryptography /
- Finite a-bel group /
- Differentially cryptanalysis /
- Linearly cryptanalysis /
- Lai-Massey scheme /
- Orthomorphism

参考文献(0)

资源附件(0)

计量

文章访问数: 2562
HTML全文浏览量: 129
PDF下载量: 603
被引次数: 0

/

下载: 全尺寸图片幻灯片

分享

用微信扫码二维码

分享至好友和朋友圈

返回