Paper 2014/474

Cryptographic Schemes Based on the ASASA Structure: Black-box, White-box, and Public-key

Alex Biryukov, Charles Bouillaguet, and Dmitry Khovratovich


In this paper we pick up an old challenge to design public key or white-box construction from symmetric cipher components. We design several encryption schemes based on the \textsf{ASASA} structure ranging from fast and generic symmetric ciphers to compact public key and white-box constructions based on generic affine transformations combined with specially designed low degree non-linear layers. While explaining our design process we show several instructive attacks on the weaker variants of our schemes.

Note: Full version of the ASIACRYPT 2014 paper, reviewer's comments taken into account.

Available format(s)
Publication info
A major revision of an IACR publication in ASIACRYPT 2014
ASASAmultivariate cryptographywhite-box cryptographycryptanalysisalgebraicsymmetric
Contact author(s)
khovratovich @ gmail com
2014-10-11: revised
2014-06-21: received
See all versions
Short URL
Creative Commons Attribution


      author = {Alex Biryukov and Charles Bouillaguet and Dmitry Khovratovich},
      title = {Cryptographic Schemes Based on the ASASA Structure: Black-box, White-box, and Public-key},
      howpublished = {Cryptology ePrint Archive, Paper 2014/474},
      year = {2014},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.