Paper 2023/1675
Another Look at Differential-Linear Attacks
Abstract
Differential-Linear (DL) cryptanalysis is a well known cryptanalytic technique that combines differential and linear cryptanalysis. Over the years, multiple techniques were proposed to increase its strength and applicability. Two relatively recent ones are: The partitioning technique by Leurent and the use of neutral bits adapted by Beierle et al. to DL cryptanalysis. In this paper we compare these techniques and discuss the possibility of using them together to achieve the best possible DL attacks. We study the combination of these two techniques and show that in many cases they are indeed compatible. We demonstrate the strength of the combination in two ways. First, we present the first DL attack on 4-round Xoodyak and an extension to 5-round in the related key model. We show that the attacks are possible only by using these two techniques simultaneously. In addition, using the combination of the two techniques we improve a DL attack on 9-round DES. We show that the partitioning technique mainly reduces the time complexity, and the use of neutral bits mainly reduces the data complexity, while the combination of them reduces both the time and data complexities.
Metadata
- Available format(s)
- Category
- Attacks and cryptanalysis
- Publication info
- Published elsewhere. Minor revision. SAC 2022
- DOI
- 10.1007/978-3-030-99277-4
- Keywords
- Differential-Linear CryptanalysisPartitioningNeutral BitsXoodyakDES
- Contact author(s)
-
odunkelman @ ds haifa ac il
relweiz @ gmail com - History
- 2023-11-02: revised
- 2023-10-29: received
- See all versions
- Short URL
- https://ia.cr/2023/1675
- License
-
CC BY-NC-SA
BibTeX
@misc{cryptoeprint:2023/1675, author = {Orr Dunkelman and Ariel Weizman}, title = {Another Look at Differential-Linear Attacks}, howpublished = {Cryptology {ePrint} Archive, Paper 2023/1675}, year = {2023}, doi = {10.1007/978-3-030-99277-4}, url = {https://eprint.iacr.org/2023/1675} }