Cryptology ePrint Archive: Report 2017/622

GIFT: A Small Present

Subhadeep Banik and Sumit Kumar Pandey and Thomas Peyrin and Yu Sasaki and Siang Meng Sim and Yosuke Todo

Abstract: In this article, we revisit the design strategy of PRESENT, leveraging all the advances provided by the research community in construction and cryptanalysis since its publication, to push the design up to its limits. We obtain an improved version, named GIFT, that provides a much increased efficiency in all domains (smaller and faster), while correcting the well-known weakness of PRESENT with regards to linear hulls. GIFT is a very simple and clean design that outperforms even SIMON or SKINNY for round-based implementations, making it one of the most energy efficient ciphers as of today. It reaches a point where almost the entire implementation area is taken by the storage and the Sboxes, where any cheaper choice of Sbox would lead to a very weak proposal. In essence, GIFT is composed of only Sbox and bit-wiring, but its natural bitslice data flow ensures excellent performances in all scenarios, from area-optimised hardware implementations to very fast software implementation on high-end platforms. We conducted a thorough analysis of our design with regards to state-of-the-art cryptanalysis, and we provide strong bounds with regards to differential/linear attacks.

Category / Keywords: lightweight cryptography, block cipher, PRESENT, GIFT

Original Publication (with major differences): IACR-CHES-2017

Date: received 26 Jun 2017, last revised 18 Jun 2020

Contact author: bsubhadeep at ntu edu sg, spandey at ntu edu sg, thomas peyrin at ntu edu sg, Sasaki Yu at lab ntt co jp, crypto s m sim at gmail com, Todo Yosuke at lab ntt co jp

Available format(s): PDF | BibTeX Citation

Note: This is the full version of the same title work published in CHES 2017.

Version: 20200618:162845 (All versions of this report)

Short URL: ia.cr/2017/622


[ Cryptology ePrint archive ]