Cryptology ePrint Archive: Report 2015/908
Linear Distinguishers in the Key-less Setting: Application to PRESENT
Martin M. Lauridsen and Christian Rechberger
Abstract: The application of the concept of linear cryptanalysis to the domain of key-less primitives is largely an open problem. In this paper we, for the first time, propose a model in which its application is meaningful for distinguishing block ciphers.
Combining our model with ideas from message modification and rebound-like approaches, we initiate a study of cryptographic primitives with respect to this new attack vector and choose the lightweight block cipher PRESENT as an example target. This leads to known-key distinguishers over up to 27 rounds, whereas the best previous result is up to 18 rounds in the chosen-key model.
Category / Keywords: secret-key cryptography / hash function, block cipher, linear cryptanalysis, distinguisher, PRESENT
Original Publication (with minor differences): IACR-FSE-2015
Date: received 17 Sep 2015
Contact author: mmeh at dtu dk
Available format(s): PDF | BibTeX Citation
Version: 20150917:144201 (All versions of this report)
Short URL: ia.cr/2015/908
Discussion forum: Show discussion | Start new discussion
[ Cryptology ePrint archive ]