Impossible Differential Cryptanalysis(IDC) [4] uses impossible differential characteristics to retrieve a subkey material for the first or the last several rounds of block ciphers. Thus, the security of a block cipher against IDC can be evaluated by impossible differential characteristics. In this paper, we study impossible differential characteristics of block cipher structures whose round functions are bijective. We introduce a widely applicable method to find various impossible differential characteristics of block cipher structures. Using this method, we find various impossible differential characteristics of known block cipher structures: Nyberg's generalized Feistel network, a generalized CAST256-like structure [14], a generalized MARS-like structure [14], a generalized RC6-like structure [14], and Rijndael structure. © Springer-Verlag Berlin Heidelberg 2003.
CITATION STYLE
Kim, J., Hong, S., Sung, J., Lee, S., Lim, J., & Sung, S. (2003). Impossible differential cryptanalysis for block cipher structures. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2904, 82–96. https://doi.org/10.1007/978-3-540-24582-7_6
Mendeley helps you to discover research relevant for your work.