| 基于MILP搜索的ANU算法积分分析 |
| |
| 引用本文: | 朱亮,赵晨曦,刘宗甫.基于MILP搜索的ANU算法积分分析[J].计算机应用研究,2021,38(4):1171-1174. |
| |
| 作者姓名: | 朱亮 赵晨曦 刘宗甫 |
| |
| 作者单位: | 北京电子科技学院,北京 100071;北京电子科技学院,北京 100071;西安电子科技大学 通信工程学院,西安710071 |
| |
| 基金项目: | 国家"十三五"密码发展基金资助项目 |
| |
| 摘 要: | ANU算法是由Bansod等人发表在SCN 2016上的一种超轻量级的Feistel结构的分组密码算法。截至目前,没有人提出针对该算法的积分攻击。为了研究ANU算法抗积分攻击的安全性,根据ANU算法的结构建立起基于比特可分性的MILP模型。对该模型进行求解,首次得到ANU算法的9轮积分区分器;利用搜索到的9轮区分器以及轮密钥之间的相关性,对128 bit密钥长度的ANU算法进行12轮密钥恢复攻击,能够恢复43 bit轮密钥。该攻击的数据复杂度为263.58个选择明文,时间复杂度为288.42次12轮算法加密,存储复杂度为233个存储单元。
|
| 关 键 词: | ANU算法 积分区分器 比特可分性 混合整数线性规划 |
| 收稿时间: | 2020/5/19 0:00:00 |
| 修稿时间: | 2020/7/12 0:00:00 |
Integral cryptanalysis on ANU based on MILP |
| |
| Zhu Liang,Zhao Chenxi and Liu Zongfu.Integral cryptanalysis on ANU based on MILP[J].Application Research of Computers,2021,38(4):1171-1174. |
| |
| Authors: | Zhu Liang Zhao Chenxi and Liu Zongfu |
| |
| Affiliation: | (Beijing Electronics Science&Technology Institute,Beijing 100071,China;School of Telecommunications Engineering,Xidian University,Xi’an 710071,China) |
| |
| Abstract: | ANU cipher,published on SCN 2016 by Bansod et al,is an ultra lightweight Feistel block cipher.There was no integral attack proposed against it yet.In order to study the resistance against integral analysis of ANU cipher,this paper established a MILP model based on bit-based division according to the structure of ANU cipher.By solving the model,it got the 9-round integral distinguisher of ANU for the first time.Based on the 9-round integral distinguisher and the correlation between round keys,it attacked 12-round ANU with 128 bit key size and could recover 43 bit round key.The data complexity of this attack is 263.58chosen plaintext,the time complexity is 288.42of 12-round encryption,and the storage complexity is 233. |
| |
| Keywords: | ANU cipher integral distinguisher bit-based division MILP(mixed-integer linear programming) |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
