Abstract
The linear layer is a core component in any substitution-permutation network block cipher. Its design significantly influences both the security and the efficiency of the resulting block cipher. Surprisingly, not many general constructions are known that allow to choose trade-offs between security and efficiency. Especially, when compared to Sboxes, it seems that the linear layer is crucially understudied. In this paper, we propose a general methodology to construct good, sometimes optimal, linear layers allowing for a large variety of trade-offs. We give several instances of our construction and on top underline its value by presenting a new block cipher. PRIDE is optimized for 8-bit micro-controllers and significantly outperforms all academic solutions both in terms of code size and cycle count. © 2014 International Association for Cryptologic Research.
Author supplied keywords
Cite
CITATION STYLE
Albrecht, M. R., Driessen, B., Kavun, E. B., Leander, G., Paar, C., & Yalçin, T. (2014). Block ciphers - Focus on the linear layer (feat. PRIDE). In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8616 LNCS, pp. 57–76). Springer Verlag. https://doi.org/10.1007/978-3-662-44371-2_4
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
