Thesis Open Access

Differential Cryptanalysis of Symmetric Primitives

Eichlseder, Maria

DataCite XML Export

<?xml version='1.0' encoding='utf-8'?>
<resource xmlns:xsi="" xmlns="" xsi:schemaLocation="">
  <identifier identifierType="DOI">10.5281/zenodo.1288325</identifier>
      <creatorName>Eichlseder, Maria</creatorName>
      <affiliation>Institute of Applied Information Processing and Communications Graz University of Technology</affiliation>
    <title>Differential Cryptanalysis of Symmetric Primitives</title>
    <contributor contributorType="Supervisor">
      <contributorName>Mendel, Florian</contributorName>
      <affiliation>Graz University of Technology</affiliation>
    <contributor contributorType="Supervisor">
      <contributorName>Rechberger, Christian</contributorName>
      <affiliation>Graz University of Technology</affiliation>
    <contributor contributorType="Supervisor">
      <contributorName>Daemen, Joan</contributorName>
      <affiliation>Radboud University Nijmegen</affiliation>
    <date dateType="Issued">2018-03-01</date>
  <resourceType resourceTypeGeneral="Text">Thesis</resourceType>
    <alternateIdentifier alternateIdentifierType="url"></alternateIdentifier>
    <relatedIdentifier relatedIdentifierType="DOI" relationType="IsVersionOf">10.5281/zenodo.1288324</relatedIdentifier>
    <relatedIdentifier relatedIdentifierType="URL" relationType="IsPartOf"></relatedIdentifier>
    <rights rightsURI="">Creative Commons Attribution Non Commercial No Derivatives 4.0 International</rights>
    <rights rightsURI="info:eu-repo/semantics/openAccess">Open Access</rights>
    <description descriptionType="Abstract">&lt;p&gt;We cryptanalyze several symmetric encryption and hashing algorithms. A central factor in the security of symmetric cryptographic algorithms is the resistance of their core building block, the primitive, against cryptanalytic attacks such as differential, linear, and algebraic cryptanalysis. The fundamental idea of differential cryptanalysis is to extract secret information or forge malicious messages by investigating the behavior of the primitive for two related, slightly different inputs, and has proven both very powerful and highly versatile since its inception in the 1990s. Resistance against such attacks is thus one of the cornerstones in the design of block ciphers. More recently, alternative symmetric primitives have risen to general attention: Permutations and tweakable block ciphers in particular have shown the potential to rival block ciphers in their role as the ideal primitive for efficient and elegant schemes. However, the available cryptanalytic tools and theory on the design and analysis of these alternative primitives are arguably less mature than for block ciphers. We investigate the security of these primitives against differential cryptanalysis. Compared to classic block ciphers, adversaries who target permutations or tweakable block ciphers can take advantage of known, chosen, or related round-key material. We find that in some cases, the designers&amp;#39; block-cipher-based design strategies do not sufficiently protect against variations of the classical differential strategy. In particular, we break the full security claims of the tweakable block cipher MANTIS-5 and the permutation Simpira v1. We provide a key recovery attack for the round-reduced block cipher LowMC and analyze the authenticated cipher Prost in a related-key setting. We also develop techniques to improve the computer-aided differential analysis of unkeyed primitives, leading to the best practical collision attacks on the round-reduced hash standard SHA-2.&lt;/p&gt;</description>
    <description descriptionType="Other">This work was partially funded by the European Union's Horizon 2020 research and innovation programme under grant agreement number 644052 (HECTOR).</description>
      <funderName>European Commission</funderName>
      <funderIdentifier funderIdentifierType="Crossref Funder ID">10.13039/501100000780</funderIdentifier>
      <awardNumber awardURI="info:eu-repo/grantAgreement/EC/H2020/644052/">644052</awardNumber>
All versions This version
Views 1313
Downloads 212212
Data volume 458.4 MB458.4 MB
Unique views 1313
Unique downloads 177177


Cite as