序列密码立方攻击研究进展综述  

A Survey on Cube Attacks Against Stream Ciphers

在线阅读下载全文

作  者:田甜[1] 戚文峰[1] TIAN Tian;QI Wen-Feng(Information Engineering University,Zhengzhou 450001,China)

机构地区:[1]信息工程大学,郑州450001

出  处:《密码学报(中英文)》2024年第1期145-158,共14页Journal of Cryptologic Research

基  金:国家自然科学基金(62372464)。

摘  要:立方攻击由Dinur和Shamir在2009年欧密会上首次提出,是一种高阶差分攻击和代数攻击.经过近十余年的研究,传统立方攻击不断发展,动态立方攻击、基于可分性的立方攻击、相关立方攻击相继提出,攻击思想不断丰富,攻击技术不断改进,逐渐成为针对基于非线性反馈移位寄存器的序列密码算法的重要攻击方法.特别地,立方攻击自2009年提出以来一直是国际轻量级序列密码标准Trivium最有效的密钥恢复攻击,动态立方攻击攻破了全轮Grain-128算法,Kreyvium、Grain-128AEAD、ACORN这些基于非线性反馈移位寄存器的序列密码算法都可以用立方攻击进行有效分析.本文介绍了立方攻击的基本原理和攻击方法,综述了实验立方攻击、基于可分性立方攻击、立方集构造、动态立方攻击、相关立方攻击等方面的研究进展.Cube attacks were first proposed by Dinur and Shamir at EUROCRYPT 2009,which is a kind of higher differential attacks as well as a kind of algebraic attacks.For the past decade,dynamic cube attacks,division property based cube attacks,and correlation cube attacks have been proposed,which improved traditional cube attacks to a large extent in terms of ideas and techniques.So far the cube attack has become an important cryptanalysis method on nonlinear feedback shift register based stream ciphers.In particular,the cube attack has been the most powerful key recovery attack on Trivium which is an international standard under ISO/IEC 29192-3:2012,the dynamic cube attack broke full Grain-128,and the cube attack has also been shown to be very useful in analyzing Kreyvium,Grain-128AEAD,and ACORN.In this paper,the basic principle of cube attacks is introduced and a survey on the recent progress of experimental cube attacks,division property based cube attacks,cube construction methods,dynamic cube attacks,and correlation cube attacks is presented.

关 键 词:立方攻击 可分性 MILP 序列密码 Trivium 

分 类 号:TP309.7[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象