通信学报2017,Vol.38Issue(11):13-23,11.DOI:10.11959/j.issn.1000-436x.2017214
对轻量级分组密码I-PRESENT-80和I-PRESENT-128的biclique攻击
Biclique cryptanalysis on lightweight block ciphers I-PRESENT-80 and I-PRESENT-128
摘要
Abstract
I-PRESENT was a lightweight SPN block cipher for resource-constraint environments such as RFID tags and sensor networks. The biclique structures of I-PRESENT with sieve-in-the-middle technique was an constracted. The biclique cryptanalysis schemes on full-round I-PRESENT-80 and I-PRESENT-128 were proposed for the first time. The results show that the data complexity of the biclique cryptanalysis on I-PRESENT-80 and I-PRESENT-128 is 262 and 236chosen ciphertexts respectively, and the time complexity on them is79.482 and 127.332encryptions respectively. The time and data complexity are better than that of the exhaustive attack. In addition, the time complexity on them can be reduced to78.612 and 2126.48encryptions by using related-key technology of I-PRESENT.关键词
轻量级分组密码/PRESENT/预计算匹配/biclique攻击Key words
lightweight block cipher/PRESENT/matching-with-precomputations/biclique cryptanalysis分类
信息技术与安全科学引用本文复制引用
崔杰,左海风,仲红..对轻量级分组密码I-PRESENT-80和I-PRESENT-128的biclique攻击[J].通信学报,2017,38(11):13-23,11.基金项目
国家自然科学基金资助项目(No.61502008,No.61572001) (No.61502008,No.61572001)
安徽省自然科学基金资助项目(No.1508085QF132) The National Natural Science Foundation of China (No.61502008,No.61572001),The Natural Science Foundation of Anhui Province (No.1508085QF132) (No.1508085QF132)
