Paper 2010/155

the upper bounds on differntial characteristics in block cipher SMS4

Zhang MeiLing, Liu JingMei, and Wang XinMei

Abstract

SMS4 is a 128-bit block cipher with a 128-bit user key and 32 rounds, which is used in the Chinese National Standard for Wireless LAN WAPI. In this paper, all possible differential patterns are divided into several sections by six designed rules. In order to evaluate the security against the differential cryptanalysis of SMS4, we calculate the lower bounds on the number of active S-Boxes for all kinds of sections, based on which the lower bounds on the number of active S-Boxes in all possible differential patterns can be derived. Finally, the upper bounds on differential characteristic probabilities of arbitrary round numbers are given, which can be used to estimate the strength of SMS4 against differential attack and linear attack.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
block cipher SMS4
Contact author(s)
zhangmlwy @ gmail com
History
2010-03-25: revised
2010-03-24: received
See all versions
Short URL
https://ia.cr/2010/155
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2010/155,
      author = {Zhang MeiLing and Liu JingMei and Wang XinMei},
      title = {the upper bounds on differntial characteristics in block cipher {SMS4}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2010/155},
      year = {2010},
      url = {https://eprint.iacr.org/2010/155}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.