西安电子科技大学学报(自然科学版)2024,Vol.51Issue(2):211-223,13.DOI:10.19665/j.issn1001-2400.20230404
一种计算ARX密码差分—线性偏差的新方法
New method for calculating the differential-linear bias of the ARX cipher
摘要
Abstract
The ARX cipher consists of three basic operations,additions,rotations and XORs.Statistical analysis is currently used to calculate the bias of the ARX cipher differential-linear distinguishers.At CRYPTO 2022,NIU et al.gave a method for evaluating the correlation of the ARX cipher differential-linear distinguishers without using statistical analysis.They gave a 10-round differential-linear distinguisher for SPECK32/64.This paper gives the definition of differential-linear characteristics.It presents the first method for calculating the bias of differential-linear distinguishers using differential-linear characteristics based on the methods by BLONDEAU et al.and BAR-ON et al.Also,a method for searching for differential-linear characteristics based on Boolean Satisfiability Problem(SAT)automation techniques is proposed,which is a new method for calculating the bias of the ARX cipher differential-linear distinguisher without statistical analysis.As an application,the bias of the 10-round differential-linear distinguisher for SPECK32/64 given by NIU et al.is calculated with the theoretical value 2-15.00 obtained,which is very close to the experimental value 2-14.90 from the statistical analysis and better than the theoretical value 2-16.23 given by NIU et al.Also,the first theoretical value 2-8.41 for the bias of the 9-round differential-linear distinguisher for SIMON32/64 is given,which is close to the experimental value 2-7.12 obtained by statistical analysis.Experimental results fully demonstrate the effectiveness of this method.关键词
差分—线性区分器/ARX密码/SAT/SMT/SPECK/SIMONKey words
differential-linear cryptanalysis/ARX/SAT/SMT/SPECK/SIMON分类
信息技术与安全科学引用本文复制引用
张峰,刘正斌,张晶,张文政..一种计算ARX密码差分—线性偏差的新方法[J].西安电子科技大学学报(自然科学版),2024,51(2):211-223,13.基金项目
国家重点研发计划青年科学家项目(2021YFB3100200) (2021YFB3100200)
四川省保密通信重点实验室基金(61421030111012101) (61421030111012101)
