Cryptology ePrint Archive: Report 2016/521

SAT-based cryptanalysis of ACORN

Frédéric Lafitte and Liran Lerman and Olivier Markowitch and Dirk Van Heule

Abstract: The CAESAR competition aims to provide a portfolio of authenticated encryption algorithms. SAT solvers represent powerful tools to verify automatically and efficiently (among others) the confidentiality and the authenticity of information claimed by cryptographic primitives. In this work, we study the security of the CAESAR candidate ACORN against a SAT-based cryptanalysis. We provide the first practical and efficient attacks on the first and the last versions of ACORN. More precisely, we achieve state recovery, key recovery, state collision as well as forgery attacks. All our results demonstrate the usefulness of SAT solvers to cryptanalyse all the candidates of the CAESAR competition, thereby accelerating the "test of time".

Category / Keywords: secret-key cryptography / SAT-based cryptanalysis, CAESAR competition, Authenticated encryption, ACORN

Date: received 26 May 2016

Contact author: llerman at ulb ac be

Available format(s): PDF | BibTeX Citation

Version: 20160529:210432 (All versions of this report)

Short URL:

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]