分组密码uBlock  被引量：17

作　　者：吴文玲[1,2] 张蕾 郑雅菲[1] 李灵琛 WU Wen-Ling;ZHANG Lei;ZHENG Ya-Fei;LI Ling-Chen(Trusted Computing and Information Assurance Laboratory,Institute of Software,Chinese Academy of Sciences,Beijing 100190,China;University of Chinese Academy of Sciences,Beijing 100049,China)

机构地区：[1]中国科学院软件研究所可信计算与信息保障实验室,北京100190 [2]中国科学院大学,北京100049

出　　处：《密码学报》2019年第6期690-703,共14页Journal of Cryptologic Research

基　　金：国家自然科学基金项目(61672509);国家密码发展基金(MMJJ20170101)~~

摘　　要：本文首先介绍分组密码uBlock算法,然后简要介绍uBlock的设计原理,初步的安全性分析评估,以及各种平台的实现性能等.uBlock是一族分组密码算法,分组长度和密钥长度支持128和256比特.uBlock算法的整体结构、S盒、扩散矩阵、密钥扩展等设计,处处体现了安全、实现效率以及适应性的平衡.uBlock算法对差分分析、线性分析、积分分析、不可能差分分析、中间相遇攻击等分组密码分析方法具有足够的安全冗余.uBlock算法适应各种软硬件平台;充分考虑了现代微处理器的计算资源,可以利用SSE和AVX2等指令集高效实现;硬件实现简单而有效,既可以高速实现,保障高性能环境的安全应用,也可以轻量化实现,满足资源受限环境的安全需求.This paper first presents a detailed introduction of block cipher uBlock,then gives a brief description of the design principle,preliminary security evaluation,and implementation performance on various platforms,etc.uBlock is a family of block ciphers supporting 128-bit and 256-bit block sizes and key sizes.There are different versions of uBlock,which are denoted as uBlock-128/128,uBlock-128/256,and uBlock-256/256.The balance between security,implementation performance,and adaptability is reflected in the overall algorithm design,S-box,diffusion matrix,key schedule,and other details.uBlock has sufficient security redundancy against many cryptanalyses of block ciphers,such as differential cryptanalysis,linear cryptanalysis,integral cryptanalysis,impossible differential cryptanalysis,and meet in the middle attack.uBlock fully considers the computing resources of modern microprocessors,and can be efficiently implemented with SSE and AVX2 instruction sets.The hardware implementation of uBlock is simple and efficient.It can be implemented at high speed to ensure the security for high-performance environments,and it can also be implemented in lightweight manner to satisfy the security requirement of resource constrained environments.

关 键 词：分组密码 PX结构 S盒 扩散 安全性分析 指令集 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]