密码学报2024,Vol.11Issue(3):692-705,14.DOI:10.13868/j.cnki.jcr.000704
SKINNY的差分故障攻击与ForkAE的密钥恢复攻击
Differential Fault Attack on SKINNY and Key Recovery Attack on ForkAE
摘要
Abstract
As one of the candidate algorithms for the LWC contest,ForkAE is a family of lightweight authentication encryption algorithms based on fork ciphers,and the encryption primitive of ForkAE is a family of lightweight adjustable block cipher named SKINNY.A differential fault attack on SKINNY is given in this paper.By injecting random nibble faults in the antepenultimate round of the algorithm SKINNY-64-64 and SKINNY-64-128,a total of 4 nibbles in two consecutive rounds can be found after an average of 2.32 random nibble fault injections theoretically.By getting information of multiple locations,the full 64 bits of the round key can be recovered after an average of 9.89 random nibble fault injections,and the master key can be recovered subsequently taking advantage of the key schedule algorithm.Similar methods are utilized for SKINNY-128-128 and SKINNY-128-256.By injecting random byte faults in the antepenultimate round of these two algorithms,a total of 4 bytes in two consecutive rounds can be found after an average of 2.4 random byte fault injections theoretically,and the 128-bit master key can be recovered after an average of 9.56 random byte fault injections theoretically.The full recovery of SKINNY-64-192 or SKINNY-128-384 requires an extra attack to the fifth round from the bottom,taking 18.52 random nibble fault injections and 19.18 random byte fault injections respectively.Using the differential fault analysis on SKINNY,a method for key recovery of ForkAE is given in this paper,and the master key of ForkAE can be recovered in theory with only 1 query to the fault-injected encryptor.关键词
ForkAE算法/SKINNY算法/差分故障攻击Key words
ForkAE/SKINNY/differential fault attack分类
信息技术与安全科学引用本文复制引用
谢敏,江家煜,陈杰..SKINNY的差分故障攻击与ForkAE的密钥恢复攻击[J].密码学报,2024,11(3):692-705,14.基金项目
国家自然科学基金重点项目(62132013) (62132013)
国家自然科学基金(62372346) (62372346)
陕西省重点研发计划(S2024-YF-YBGY-1540) (S2024-YF-YBGY-1540)
河南省网络密码技术重点实验室研究课题(LNCT2022-A08)Key Program of National Natural Science Foundation of China(62132013) (LNCT2022-A08)
National Natural Science Foundation of China(62372346) (62372346)
Key Research and Development Program of Shaanxi Province(S2024-YF-YBGY-1540) (S2024-YF-YBGY-1540)
Open Fund of Henan Key Laboratory of Network Cryptography Technology(LNCT2022-A08) (LNCT2022-A08)
