Browse > Article

Simplification on Even-Mansour Scheme Attacks  

Kim, HongTae (공군사관학교/기초과학과)
Publication Information
Convergence Security Journal / v.16, no.7, 2016 , pp. 85-91 More about this Journal
Abstract
Block cipher is one of the prominent and important elements in cryptographic systems and study on the minimal construction is a major theme in the cryptographic research. Even and Mansour motivated by the study suggested a kind of block cipher called the Even-Mansour scheme in the early 1990s. It is a very simple cipher with one permutation and two secret keys. There have been many studies on the Even-Mansour scheme and security analysis of the scheme. We explain the Even-Mansour scheme and simplify those attacks on the Even-Mansour scheme with mathematical language. Additionally, we show that Pollard's rho attack to the discrete logarithm problem can be used to attack the Even-Mansour scheme with the same complexity of the Pollard's rho attack.
Keywords
Block cipher; Minimal construction; Even-Mansour scheme; Security analysis; Pollard's rho attack; Complexity;
Citations & Related Records
연도 인용수 순위
  • Reference
1 FIPS PUB 46: Data Encryption Standard (DES). National Institute of Standards and Technology, 1977.
2 FIPS PUB 197: Advanced Encryption Standard (AES). National Institute of Standards and Technology, 2001.
3 P. Gazi and S. Tessaro, "Efficient and Optimally Secure Key-Length Extension for Block Ciphers via Randomized Cascading", Advances in Cryptology - EUROCRYPT 2012, LNCS Vol. 7237, pp. 63-80, 2012.
4 D. Kwon, J. Kim, S. Park, S. H. Sung, Y. Sohn, J. H. Song, Y. Yeom, E. J. Yoon, S. Lee, J. Lee, S. Chee, D. Han and J. Hong, "New Block Cipher: ARIA", ICISC 2003, LNCS Vol. 2971, pp. 432-445, 2003.
5 X. Lai and J. L. Massey, "A Proposal for a New Block Encryption Standard", Advances in Cryptology - EUROCRYPT 1990, LNCS Vol. 473, pp. 389-404, 1991.
6 M. Matsui, "Linear Cryptanalysis Method for DES Cipher", Advances in Cryptology - EUROCRYPT 1993, LNCS Vol. 765, pp. 386-397, 1993.
7 M. Matsui, "The First Experimental Cryptanalysis of the Data Encryption Standard", Advances in Cryptology - CRYPTO 1994, LNCS Vol. 839, pp. 1-11, 1994.
8 M. Matsui, "Block encryption algorithm MISTY", proceedings of Fast Software Encryption 1997, LNCS Vol. 1267, pp. 64-74, 1997.
9 C. E. Shannon, "Communication theory of secrecy systems", Bell System Technical Journal, Vol. 28, pp. 656-715, 1949.   DOI
10 3rd Generation Partnership Project, Technical Specification Group Services and System Aspects, 3G Security, Specification of the 3GPP Confidentiality and Integrity Algorithms; Document 2: KASUMI Specification, V3.1.1, 2001.
11 E. Andreeva, A. Bogdanov, Y. Dodis, B. Mennink and J. P. Steinberger, "On the Indifferentiability of Key-Alternating Ciphers", Advances in Cryptology - CRYPTO 2013, LNCS Vol. 8042, pp. 531-550, 2013.
12 K. Aoki, T. Ichikawa, M. Kanda, M. Matsui, S. Moriai, J. Nakajima and T. Tokita, "Specification of Camellia - a 128-bit Block Cipher", http://info.isl.ntt.co.jp/camellia/, 2000.
13 E. Biham and A. Biryukov, "An Improvement of Davies' Attack on DES", Journal of Cryptology, Vol. 10, No. 3, pp. 195-206, 1997.   DOI
14 E. Biham, O. Dunkelman and N. Keller, "Enhancing Differential-Linear Cryptanalysis", Advances in Cryptology-ASIACRYPT 2002, LNCS Vol. 2501, pp. 254-266, 2002.
15 E. Biham and A. Shamir, "Differential Cryptanalysis of DES-like Cryptosystems", Advances in Cryptology - CRYPTO 1990, LNCS Vol. 537, pp. 2-21, 1990.
16 A. Biryukov and D. Wagner, "Advanced Slide Attacks", Advances in Cryptology - EUROCRYPT 2000, LNCS Vol. 1807, pp. 589-606, 2000.
17 A. Bogdanov, L. R. Knudsen, G. Leander, F. Standaert, J. Steinberger and E. Tischhauser, "Key-Alternating Ciphers in a Provable Setting: Encryption Using a Small Number of Public Permutations", Advances in Cryptology - EUROCRYPT 2012, LNCS Vol. 7237, pp. 45-62, 2012.
18 S. Chen, R. Lampe, J. Lee, Y. Seurin and J. P. Steinberger, "Minimizing the two-round Even-Mansour cipher", Advances in Cryptology - CRYPTO 2014, LNCS Vol. 8616, pp. 39-56, 2014.
19 S. Chen and J. P. Steinberger, "Tight Security Bounds for Key-Alternating Ciphers", Advances in Cryptology - EUROCRYPT 2014, LNCS Vol. 8441, pp. 327-350, 2014.
20 J. Daemen, "Limitations of the Even-Mansour Construction", Advances in Cryptology - ASIACRYPT 1991, LNCS Vol. 739, pp. 495-498, 1993.
21 Y. Dai, J. Lee, B. Mennink and J. P. Steinberger, "The Security of Multiple Encryption in the Ideal Cipher Model", Advances in Cryptology - CRYPTO 2014, LNCS Vol. 8616, pp. 20-38, 2014.
22 I. Dinur, O. Dunkelman, N. Keller and A. Shamir, "Key Recovery Attacks on 3-round Even-Mansour, 8-step LED-128, and Full AES2". Advances in Cryptology - ASIACRYPT 2013, LNCS Vol. 8269, pp. 337-356, 2013.
23 I. Dinur, O. Dunkelman, N. Keller and A. Shamir, "Cryptanalysis of Iterated Even-Mansour Schemes with Two Keys", Advances in Cryptology - ASIACRYPT 2014, LNCS Vol. 8873, pp. 439-457, 2014.
24 O. Dunkelman, N. Keller and A. Shamir, "Minimalism in Cryptography: The Even-Mansour Scheme Revisited", Advances in Cryptology - EUROCRYPT 2012, LNCS Vol. 7237, pp. 336-354, 2012.
25 S. Even and Y. Mansour, "A Construction of a Cipher from a Single Pseudorandom Permutation", Advances in Cryptology - ASIACRYPT 1991, LNCS Vol. 739, pp. 210-224, 1993.
26 S. Even and Y. Mansour, "A Construction of a Cipher from a Single Pseudorandom Permutation", Journal of Cryptology, Vol. 10, No. 3, pp. 151-162, 1997.   DOI