Paper 2003/109

Crytanalysis of SAFER++

Alex Biryukov, Christophe De Cannière, and Gustaf Dellkrantz

Abstract

This paper presents several multiset and boomerang attacks on SAFER++ up to 5.5 out of its 7 rounds. These are the best known attacks for this cipher and significantly improve the previously known results. The attacks in the paper are practical up to 4 rounds. The methods developed to attack SAFER++ can be applied to other substitution-permutation networks with incomplete diffusion.

Note: This paper contains some additional illustrations and an appendix describing a boomerang attack on 4-round SAFER++, both of which were removed from the CRYPTO2003 paper because of space limitations.

Metadata
Available format(s)
PDF PS
Category
Secret-key cryptography
Publication info
Published elsewhere. Shortened version will appear in Advances in Cryptology - CRYPTO2003
Keywords
cryptanalysisblock ciphersSAFERmultiset attackboomerang attack
Contact author(s)
christophe decanniere @ esat kuleuven ac be
History
2003-06-02: received
Short URL
https://ia.cr/2003/109
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2003/109,
      author = {Alex Biryukov and Christophe De Cannière and Gustaf Dellkrantz},
      title = {Crytanalysis of {SAFER}++},
      howpublished = {Cryptology {ePrint} Archive, Paper 2003/109},
      year = {2003},
      url = {https://eprint.iacr.org/2003/109}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.