首页|期刊导航|密码学报（中英文）|Boomerang区分器多轮连接层概率的改进计算方法

Boomerang区分器多轮连接层概率的改进计算方法

李晨孟吴保峰侯诗棋林东岱

密码学报（中英文）2025，Vol.12Issue(3)：586-603,18.

密码学报（中英文）2025，Vol.12Issue(3)：586-603,18.DOI:10.13868/j.cnki.jcr.000783

Boomerang区分器多轮连接层概率的改进计算方法

An Improved Method for Calculating Probability of Multi-Round Boomerang Dependency

李晨孟 ¹吴保峰 ¹侯诗棋 ¹林东岱²

作者信息

1. 中国科学院信息工程研究所网络空间安全防御全国重点实验室,北京 100085||密码科学技术全国重点实验室,北京 100878||中国科学院大学网络空间安全学院,北京 100049
2. 中国科学院信息工程研究所网络空间安全防御全国重点实验室,北京 100085||中国科学院大学网络空间安全学院,北京 100049
折叠

摘要

Abstract

A Boomerang distinguisher with high probability is an important prerequisite for suc-cessful Boomerang attacks,and how to effectively estimate the probability of the distinguisher is a crucial part in the search process.The Boomerang dependency has a significant impact on the effec-tiveness of the distinguishers.The complex structure of the connectivity layer makes it difficult to accurately portray the differential propagation probabilities in it.Moreover,the number of variables in the probability expression increases sharply as the number of rounds increases,making it computa-tionally difficult to theoretically estimate the probability of higher-round Boomerang dependency.In order to address the above issues,this study proposes an improved method to calculate the probability of multi-round Boomerang dependency,which complements and generalizes existing tools for describ-ing Boomerang characteristics more precisely.Firstly,this study provides three 2-round connectivity tables and one 3-round connectivity table for describing Boomerang characteristics.Later,AES and CRAFT are taken as examples to discuss the effect of linear layers in multi-round connectivity ta-bles on their probabilities,and the application scenarios are given of multi-round connectivity tables.Moreover,these multi-round connectivity tables are generalized under classical symmetric structure to asymmetric structure,and a security criterion is proposed for resisting Boomerang attacks—the multi-round Boomerang uniformity.Taking SKINNY as an example,it is pointed out that the errors in calculating the probability of an existing distinguisher,and the probability calculation is achieved of 6-round Em,which is 2 rounds higher than previous work using the existing Boomerang connection tables.

关键词

Boomerang区分器/Boomerang连接表/Boomerang均匀度/SKINNY算法

Key words

Boomerang distinguisher/Boomerang connectivity tables/Boomerang uniformity/SKINNY

分类

信息技术与安全科学

引用本文复制引用

李晨孟,吴保峰,侯诗棋,林东岱..Boomerang区分器多轮连接层概率的改进计算方法[J].密码学报（中英文）,2025,12(3):586-603,18.

基金项目

国家重点研发计划(2023YFB4503203) （2023YFB4503203）

中国科学院战略性先导专项(XDB0690200)National Key Research and Development Program of China(2023YFB4503203) （XDB0690200）

Strategic Priority Research Program of Chinese Academy of Sciences(XDB0690200) （XDB0690200）

密码学报（中英文）

OA北大核心

ISSN：2095-7025

访问量0

下载量0

段落导航