Conference paper Open Access
Christoph Dobraunig; Maria Eichlseder; Daniel Kales; Florian Mendel
<?xml version='1.0' encoding='utf-8'?> <oai_dc:dc xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:oai_dc="http://www.openarchives.org/OAI/2.0/oai_dc/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.openarchives.org/OAI/2.0/oai_dc/ http://www.openarchives.org/OAI/2.0/oai_dc.xsd"> <dc:creator>Christoph Dobraunig</dc:creator> <dc:creator>Maria Eichlseder</dc:creator> <dc:creator>Daniel Kales</dc:creator> <dc:creator>Florian Mendel</dc:creator> <dc:date>2017-03-05</dc:date> <dc:description>MANTIS is a lightweight tweakable block cipher published at CRYPTO 2016. In addition to the full 14-round version, MANTIS7, the designers also propose an aggressive 10-round version, MANTIS5. The security claim for MANTIS5 is resistance against “practical attacks”, defined as related-tweak attacks with data complexity 2d less than 230 chosen plaintexts (or 240 known plaintexts), and computational complexity at most 2126−d. We present a key-recovery attack against MANTIS5 with 228 chosen plaintexts and a computational complexity of about 238 block cipher calls, which violates this claim. Our attack is based on a family of differential characteristics and exploits several properties of the lightweight round function and tweakey schedule. To verify the validity of the attack, we also provide a practical implementation which recovers the full key in about 1 core hour using 230 chosen plaintexts.</dc:description> <dc:identifier>https://zenodo.org/record/574265</dc:identifier> <dc:identifier>10.5281/zenodo.574265</dc:identifier> <dc:identifier>oai:zenodo.org:574265</dc:identifier> <dc:relation>info:eu-repo/grantAgreement/EC/H2020/644052/</dc:relation> <dc:relation>url:https://zenodo.org/communities/hector</dc:relation> <dc:rights>info:eu-repo/semantics/openAccess</dc:rights> <dc:rights>https://creativecommons.org/licenses/by-nc/4.0/legalcode</dc:rights> <dc:subject>differential cryptanalysis</dc:subject> <dc:subject>MANTIS</dc:subject> <dc:subject>lightweight</dc:subject> <dc:subject>PRINCE-like ciphers</dc:subject> <dc:title>Practical Key-Recovery Attack on MANTIS-5</dc:title> <dc:type>info:eu-repo/semantics/conferencePaper</dc:type> <dc:type>publication-conferencepaper</dc:type> </oai_dc:dc>
All versions | This version | |
---|---|---|
Views | 34 | 34 |
Downloads | 33 | 33 |
Data volume | 17.0 MB | 17.0 MB |
Unique views | 33 | 33 |
Unique downloads | 33 | 33 |