Cryptanalysis of ARMADILLO 2 ∗ Mohamed
نویسندگان
چکیده
ARMADILLO2 is the recommended variant of a multi-purpose cryptographic primitive dedicated to hardware which has been proposed by Badel et al. in [1]. In this paper we propose a meet-in-the-middle technique that allows us to invert the ARMADILLO2 function. Using this technique we are able to perform a key recovery attack on ARMADILLO2 in FIL-MAC application mode. A variant of this attack can also be applied when ARMADILLO2 is used as a stream cipher in the PRNG application mode. Finally we propose a (second) preimage attack on its hashing application mode. We have validated our attacks by implementing cryptanalysis on scaled variants that match the theoretical predicted complexities. All the cryptanalysis presented in this paper can be applied for any arbitrary bitwise permutations σ0 and σ1 used in the internal permutation.
منابع مشابه
Towards Algebraic Cryptanalysis of HFE Challenge 2
In this paper, we present an experimental analysis of HFE Challenge 2 (144 bit) type systems. We generate scaled versions of the full challenge fixing and guessing some unknowns. We use the MXL3 algorithm, an efficient algorithm for computing Gröbner basis, to solve these scaled versions. We review the MXL3 strategy and introduce our experimental results.
متن کاملEndocytic and NBT-reduction activities and TNF expression by macrophages and monocytes of the armadillo (Dasypus novemcinctus)
The armadillo could be considered as an experimental model for leprosy studies. Mycobacterium leprae main host cells are macrophages and Schwann cells. However, endocytosis and germicidal activities of armadillo macrophages and monocytes have not yet been evaluated. The aim of this research was to evaluate endocytosis and NBT-reduction activities of monocyte-derived macrophages (MDM) and monocy...
متن کاملA new method for accelerating impossible differential cryptanalysis and its application on LBlock
Impossible differential cryptanalysis, the extension of differential cryptanalysis, is one of the most efficient attacks against block ciphers. This cryptanalysis method has been applied to most of the block ciphers and has shown significant results. Using structures, key schedule considerations, early abort, and pre-computation are some common methods to reduce complexities of this attack. In ...
متن کاملImpossible Differential Cryptanalysis on Deoxys-BC-256
Deoxys is a final-round candidate of the CAESAR competition. Deoxys is built upon an internal tweakable block cipher Deoxys-BC, where in addition to the plaintext and key, it takes an extra non-secret input called a tweak. This paper presents the first impossible differential cryptanalysis of Deoxys-BC-256 which is used in Deoxys as an internal tweakable block cipher. First, we find a 4.5-round...
متن کاملEnhanced Cryptanalysis of Substitution Cipher Chaining mode (SCC-128)
In this paper, we present an enhanced cryptanalysis of the Substitution Cipher Chaining mode (SCC) [1]. In [2], SCC-128 (SCC which uses AES with 128-bit key) was broken using 5 attacks, where the authors used an active attack model (where the attacker can force the disk encryption application to re-encrypt a sector for her), the complexity of these attacks are at most 2 cipher executions. In th...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2011