Skip to main content
Conference Proceedings

From distinguishers to key recovery: Improved related-key attacks on even-mansour

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2015) 9290 177-188
DOI: 10.1007/978-3-319-23318-5_10
3Citations
Citations of this article
16Readers
Mendeley users who have this article in their library.
Get full text

Abstract

We show that a distinguishing attack in the related key model on an Even-Mansour block cipher can readily be converted into an extremely efficient key recovery attack. Concerned ciphers include in particular all iterated Even-Mansour schemes with independent keys.We apply this observation to the Caesar candidate Prøst-OTR and are able to recover the whole key with a number of requests linear in its size. This improves on recent forgery attacks in a similar setting.

Author supplied keywords

Cite

CITATION STYLE

APA

Karpman, P. (2015). From distinguishers to key recovery: Improved related-key attacks on even-mansour. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 9290, pp. 177–188). Springer Verlag. https://doi.org/10.1007/978-3-319-23318-5_10

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free