Paper 2013/301

Impossible Differential-Linear Cryptanalysis of Reduced-Round CLEFIA-128

Zheng Yuan, Xian Li, and Bart Preneel

Abstract

CLEFIA is a 128-bit block cipher proposed by Sony Corporation in 2007. Our paper introduces a new chosen text attack, the impossible differential-linear attack, on iterated cryptosystems. The attack is efficient for $16$-round CLEFIA with whitening keys. In the paper, we construct a $13$-round impossible differential-linear distinguisher. Based on the distinguisher, we present an effective attack on 16-round CLEFIA-$128$ with data complexity of $2^{122.73}$, recovering $96$-bit subkeys in total. Our attack can also be applied to CLEFIA-192 and CLEFIA-$256$.

Note: We complement the third chapter, that is say, we introduced in detail our attack thoughts.

Metadata
Available format(s)
PDF
Publication info
Preprint. MINOR revision.
Keywords
CLEFIAimpossible differential cryptanalysislinear approximation.
Contact author(s)
zyuan @ tsinghua edu cn
History
2020-10-08: last of 6 revisions
2013-05-25: received
See all versions
Short URL
https://ia.cr/2013/301
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2013/301,
      author = {Zheng Yuan and Xian Li and Bart Preneel},
      title = {Impossible Differential-Linear Cryptanalysis of Reduced-Round {CLEFIA}-128},
      howpublished = {Cryptology {ePrint} Archive, Paper 2013/301},
      year = {2013},
      url = {https://eprint.iacr.org/2013/301}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.