Journal ArticleOPEN ACCESS

Linear and differential cryptanalysis of reduced-round AES

Tatra Mountains Mathematical Publications (2011) 50(1) 51-61
DOI: 10.2478/v10127-011-0036-y
5Citations
Citations of this article
21Readers
Mendeley users who have this article in their library.

Abstract

The subject of this paper is linear and differential cryptanalysis of two rounds of the Advanced Encryption Standard (AES) with estimation of complexity for three-round AES attack. Presented linear attack is based on finding highly probable linear expressions and presented differential attack is based on finding specific bitwise differences. Data complexity of described linear and differential attack is 2 28 and 2 27, respectively, where 8 bits of subkey are recovered. Minimal complexity of linear attack on three-round AES is bigger than d × 2 60, where d is a small constant. © 2011 Mathematical Institute, Slovak Academy of Sciences.

Author supplied keywords

Cite

CITATION STYLE

APA

Lacko-Bartošová, L. (2011). Linear and differential cryptanalysis of reduced-round AES. Tatra Mountains Mathematical Publications, 50(1), 51–61. https://doi.org/10.2478/v10127-011-0036-y

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free