Paper 2024/841

Two generalizations of almost perfect nonlinearity

Claude Carlet, Universities of Paris 8, France, and Bergen, Norway
Abstract

Almost perfect nonlinear (in brief, APN) functions are vectorial functions $F:\mathbb F_2^n\rightarrow \mathbb F_2^n$ playing roles in several domains of information protection, at the intersection of computer science and mathematics. Their definition comes from cryptography and is also related to coding theory. When they are used as substitution boxes (S-boxes, which are the only nonlinear components in block ciphers), APN functions contribute optimally to the resistance against differential attacks. This makes of course a strong cryptographic motivation for their study, which has been very active since the 90's, and has posed interesting and difficult mathematical questions, some of which are still unanswered. \\Since the introduction of differential attacks, more recent types of cryptanalyses have been designed, such as integral attacks. No notion about S-boxes has been identified which would play a similar role with respect to integral attacks. In this paper, we study two generalizations of APNness that are natural from a mathematical point of view, since they directly extend classical characterizations of APN functions. We call these two notions strong non-normality and sum-freedom. The former existed already for Boolean functions and the latter is new. We study how they are related to cryptanalyses (the relation is stronger for sum-freedom). The two notions behave differently from each other while they have similar definitions. They behave differently from differential uniformity, which is a well-known generalization of APNness. We study the different ways to define them, and on the example of Kasami functions, how difficult they are. We prove their satisfiability, their monotonicity, their invariance under classical equivalence relations and we characterize them by the Walsh transform. \\ We begin a study of the multiplicative inverse function (used as a substitution box in the Advanced Encryption Standard and other block ciphers) from the viewpoint of these two notions. In particular, we find a simple expression of the sum of the values taken by this function over affine subspaces of $\mathbb F_{2^n}$ that are not vector subspaces. This formula shows that, in such case, the sum never vanishes (which is a remarkable property of the inverse function). We also give a formula for the case of a vector space defined by one of its bases.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Preprint.
Keywords
Almost perfect nonlinearkth-order sum-freekth-order non-affinemultiplicative inverse function
Contact author(s)
claude carlet @ gmail com
History
2024-09-21: revised
2024-05-29: received
See all versions
Short URL
https://ia.cr/2024/841
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/841,
      author = {Claude Carlet},
      title = {Two generalizations of almost perfect nonlinearity},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/841},
      year = {2024},
      url = {https://eprint.iacr.org/2024/841}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.