< Terug naar vorige pagina

Publicatie

Linear Cryptanalysis Reduced Round of Piccolo-80

Boekbijdrage - Boekhoofdstuk Conferentiebijdrage

Piccolo is a 64-bit lightweight block cipher suitable for constrained environments such as wireless sensor networks. In this paper we evaluate the security of Piccolo-80 against linear cryptanalysis, we present a 6-round linear approximation of Piccolo-80 with probability 1/2+2^{−29.04}. We use this approximation to attack 7-round Piccolo-80 (with whitening keys) with data complexity of 2^{61} known plaintexts and time complexity of 2^{61}. Its extension to an 8-round attack merely increases the time complexity to 2^{70}. This is the best linear attack against Piccolo-80 and it is also applicable to Piccolo-128 as the difference between the two variates is only the number of rounds and the key schedule algorithm. Moreover, we show that the bias in the approximation of the F-function, in some cases, is related to the MSB of the input. We utilize this relation to efficiently extract the MSBs of the whitening keys in the first round.
Boek: Cyber Security Cryptography and Machine Learning
Pagina's: 16 - 32
ISBN:978-3-030-20950-6
Jaar van publicatie:2019