作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2021, Vol. 47 ›› Issue (5): 117-123. doi: 10.19678/j.issn.1000-3428.0057716

• 网络空间安全 • 上一篇    下一篇

Midori64分组密码算法的积分攻击

王超1,2, 陈怀凤1,2   

  1. 1. 中国电子信息产业集团有限公司第六研究所, 北京 102209;
    2. 密码科学技术国家重点实验室, 北京 100878
  • 收稿日期:2020-03-13 修回日期:2020-04-30 发布日期:2021-05-11
  • 作者简介:王超(1982-),男,高级工程师、博士,主研方向为信息安全;陈怀凤,高级工程师、博士。
  • 基金资助:
    密码科学技术国家重点实验室开放课题“新型轻量级序列密码设计与分析”。

Integral Attacks on Midori64

WANG Chao1,2, CHEN Huaifeng1,2   

  1. 1. The 6th Research Institute of China Electronics Corporation, Beijing 102209, China;
    2. State Key Laboratory of Cryptology, Beijing 100878, China
  • Received:2020-03-13 Revised:2020-04-30 Published:2021-05-11

摘要: 积分攻击是一种重要的密钥恢复攻击方法,已被广泛应用于多种分组算法分析任务。Midori64算法是一种轻量级分组密码算法,为对其进行积分攻击,构建3个6轮零相关区分器,将其分别转化为6轮平衡积分区分器并合成为一个性质优良的6轮零和积分区分器,将该零和积分区分器向前扩展1轮得到一个7轮零和积分区分器。分别采用部分和技术与快速Walsh-Hadamard变换技术,得到Midori64算法的10轮积分攻击和11轮积分攻击。分析结果表明,10轮积分攻击的数据复杂度为240个明密文对,时间复杂度为267.85次10轮加密运算,11轮积分攻击的数据复杂度为240.09个明密文对,时间复杂度为2117.37次11轮加密运算。

关键词: 密码分析, Midori64算法, 积分攻击, 部分和技术, 快速Walsh-Hadamard变换技术

Abstract: Proven to be an important key recovery method,the technique of integral attacks has been widely used in the analysis of block ciphers.This paper describes an attempt at integral attacks on the lightweight block cipher,Midori64.Three 6-round zero-correlation distinguishers are constructed,transformed into three 6-round balanced integral distinguishers,and then merged into one excellent 6-round zero-sum integral distinguisher,which extends one round forward to obtain a 7-round zero-sum integral distinguisher.On this basis,the partial-sum technique and the fast Walsh-Hadamard transform technique are used for the 10-round and 11-round integral attacks on Midori64.The analysis results show that the data complexity and the time complexity of the 10-round integral attacks are 240 and 267.85 respectively,and those of 11-round attacks are 240.09 and 2117.37 respectively.

Key words: cryptanalysis, Midori64, integral attack, partial-sum technique, fast Walsh-Hadamard transform technique

中图分类号: