Cryptology ePrint Archive: Report 2017/622

GIFT: A Small Present

Subhadeep Banik and Sumit Kumar Pandey and Thomas Peyrin and Siang Meng Sim and Yosuke Todo and Yu Sasaki

Abstract: In this article, we revisit the design strategy of PRESENT, leveraging all the advances provided by the research community in construction and cryptanalysis since its publication, to push the design up to its limits. We obtain an improved version, named GIFT, that provides a much increased efficiency in all domains (smaller and faster), while correcting the well-known weakness of PRESENT with regards to linear hulls. GIFT is a very simple and clean design that outperforms even SIMON or SKINNY for round-based implementations, making it one of the most energy efficient ciphers as of today. It reaches a point where almost the entire implementation area is taken by the storage and the Sboxes, where any cheaper choice of Sbox would lead to a very weak proposal. In essence, GIFT is composed of only Sbox and bit-wiring, but its natural bitslice data flow ensures excellent performances in all scenarios, from area-optimised hardware implementations to very fast software implementation on high-end platforms. We conducted a thorough analysis of our design with regards to state-of-the-art cryptanalysis, and we provide strong bounds with regards to differential/linear attacks.

Category / Keywords: lightweight cryptography, block cipher, PRESENT, GIFT

Original Publication (with major differences): IACR-CHES-2017

Date: received 26 Jun 2017, last revised 7 Aug 2017

Contact author: bsubhadeep at ntu edu sg, spandey@ntu edu sg, thomas peyrin@ntu edu sg, SSIM011@e ntu edu sg, Todo Yosuke@lab ntt co jp, Sasaki Yu@lab ntt co jp

Available format(s): PDF | BibTeX Citation

Note: This is the full version of the same title work published in CHES 2017.

Version: 20170808:001719 (All versions of this report)

Short URL: ia.cr/2017/622

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]