Paper 2020/1485

Quantum Search for Lightweight Block Ciphers: GIFT, SKINNY, SATURNIN

Subodh Bijwe, Amit Kumar Chauhan, and Somitra Kumar Sanadhya

Abstract

Grover's search algorithm gives a quantum attack against block ciphers with query complexity $O(\sqrt{N})$ to search a keyspace of size $N$, when given a sufficient number of plaintext-ciphertext pairs. A recent result by Jaques et al. (EUROCRYPT 2020) presented the cost estimates of quantum key search attacks against AES under different security categories as defined in NIST's PQC standardization process. In this work, we extend their approach to lightweight block ciphers for the cost estimates of quantum key search attacks under circuit depth restrictions. We present quantum circuits for the lightweight block ciphers GIFT, SKINNY, and SATURNIN. We give overall cost in both the gate count and depth-times-width cost metrics, under NIST's maximum depth constraints. We also present Q# implementation of the full Grover oracles for all versions of GIFT, SKINNY, and SATURNIN for unit tests and automatic resource estimations.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Preprint.
Keywords
Quantum cryptanalysisquantum searchlightweight block ciphersGIFTSKINNYSATURNINQ# programming language
Contact author(s)
2017csz0008 @ iitrpr ac in
History
2020-12-09: last of 5 revisions
2020-11-29: received
See all versions
Short URL
https://ia.cr/2020/1485
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2020/1485,
      author = {Subodh Bijwe and Amit Kumar Chauhan and Somitra Kumar Sanadhya},
      title = {Quantum Search for Lightweight Block Ciphers: {GIFT}, {SKINNY}, {SATURNIN}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2020/1485},
      year = {2020},
      url = {https://eprint.iacr.org/2020/1485}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.