首页|Rectangle Attack Against Type-Ⅰ Generalized Feistel Structures
Rectangle Attack Against Type-Ⅰ Generalized Feistel Structures
扫码查看
点击上方二维码区域,可以放大扫码查看
原文链接
NETL
NSTL
万方数据
Type-Ⅰ generalized Feistel networks(GFN)are widely used frameworks in symmetric-key primitive designs such as CAST-256 and Lesamnta.Dif-ferent from the extensive studies focusing on specific block cipher instances,the analysis against Type-Ⅰ GFN structures gives generic security evaluation of the basic frameworks and concentrates more on the effect of linear transformation.Currently,works in this field mainly eval-uate the security against impossible differential attack,zero-correlation linear attack,meet-in-the-middle attack and yoyo game attack,while its security evaluation against rectangle attack is still missing.In this paper,we filled this gap and gave the first structural analytical res-ults of Type-Ⅰ GFN against rectangle attack.By exploit-ing its structural properties,we proved there exists a boomerang switch for Type-Ⅰ GFN for the first time,which is independent of the round functions.Then we turned the boomerang switch into chosen plaintext set-ting and proposed a new rectangle attack model.By ap-pending 1 more round in the beginning of the boomerang switch,we constructed a rectangle distinguisher and a key recovery attack could be performed.
NETL
NSTL
万方数据
