Skip to main content
Conference ProceedingsOPEN ACCESS

Key-schedule cryptanalysis of DEAL

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2000) 1758 118-134
DOI: 10.1007/3-540-46513-8_9
4Citations
Citations of this article
25Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

DEAL is a six- or eight-round Luby-Rackoff cipher that uses DES as its round function, with allowed key lengths of 128, 192, and 256 bits. In this paper, we discuss two new results on the DEAL key schedule. First, we discuss the existence of equivalent keys for all three key lengths; pairs of equivalent keys in DEAL-128 require about 264 DES encryptions to find, while equivalent keys in DEAL-192 and DEAL-256 require only six or eight DES encryptions to find. Second, we discuss a new related- key attack on DEAL-192 and DEAL-256. This attack requires 233 related key queries, the same 3 plaintexts encrypted under each key, and may be implemented with a variety of time-memory tradeofis; Given 3 269bytes of memory, the attack requires 2113DES encryptions, and given 3 245 bytes of memory, the attack requires 2137 DES encryptions. We conclude with some questions raised by the analysis.

Cite

CITATION STYLE

APA

Kelsey, J., & Schneier, B. (2000). Key-schedule cryptanalysis of DEAL. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 1758, pp. 118–134). Springer Verlag. https://doi.org/10.1007/3-540-46513-8_9

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free