Abstract
In June 2013, the U.S. National Security Agency proposed two families of lightweight block ciphers, called SIMON and SPECK respectively. These ciphers are designed to perform excellently on both hardware and software platforms. In this paper, we mainly present zero-correlation linear cryptanalysis on various versions of SIMON. Firstly, by using missin-the-middle approach, we construct zero-correlation linear distinguishers of SIMON, and zero-correlation linear attacks are presented based on careful analysis of key recovery phase. Secondly, multidimensional zero-correlation linear attacks are used to reduce the data complexity. Our zero-correlation linear attacks perform better than impossible differential attacks proposed by Abed et al. in ePrint Report 2013/568. Finally, we also use the divide-and-conquer technique to improve the results of linear cryptanalysis proposed by Javad et al. in ePrint Report 2013/663.
Similar content being viewed by others
Explore related subjects
Discover the latest articles, news and stories from top researchers in related subjects.References
Bogdanov A, Knudsen L, Leander G et al. PRESENT: An ultra-lightweight block cipher. In Proc. the 9th International Workshop on Cryptographic Hardware and Embedded Systems, September 2007, pp.450-466.
Wu W, Zhang L. LBlock: A lightweight block cipher. In Proc. the 9th International Conference on Applied Cryptography and Network Security, June 2011, pp.327-344.
Gong Z, Nikova S, Law Y. KLEIN: A new family of lightweight block ciphers. In Proc. the 7th International Workshop on RFID Security and Privacy (RFIDSec), June 2011, pp.1-18.
Shibutani K, Isobe T, Hiwatari H et al. Piccolo: An ultralightweight blockcipher. In Proc. the 13th International Workshop on Cryptographic Hardware and Embedded Systems, September 28-October 1, 2011, pp.342-357.
Guo J, Peyrin T, Poschmann A et al. The LED block cipher. In Proc. the 13th International Workshop on Cryptographic Hardware and Embedded Systems, September 28-October 1, 2011, pp.326-341.
Borghoff J, Canteaut A, G¨uneysu T et al. PRINCE — A low-latency block cipher for pervasive computing applications. In Proc. the 18th International Conference on the Theory and Application of Cryptology and Information Security, December 2012, pp.208-225.
Beaulieu R, Shors D, Smith J et al. The SIMON and SPECK families of lightweight block ciphers. Cryptology ePrint Archive: Report 404, 2013. http://eprint.iacr.org/2013/404, April 2015.
Abed F, List E, Lucks S et al. Differential and linear cryptanalysis of reduced-round SIMON. Cryptology ePrint Archive: Report 526, 2013. http://eprint.iacr.org/2013/526.pdf, April 2015.
Alkhzaimi H, Lauridsen M. Cryptanalysis of the SIMON family of block ciphers. Cryptology ePrint Archive: Report 543, 2013. http://eprint.iacr.org/2013/543.pdf, April 2015.
Abed F, List E, Lucks S et al. Cryptanalysis of the SPECK family of block ciphers. Cryptology ePrint Archive: Report 568, 2013. http://eprint.iacr.org/2013/568, April 2015.
Alizadeh J, Bagheri N, Gauravaram P et al. Linear cryptanalysis of round reduced variants of SIMON. Cryptology ePrint Archive: Report 663, 2013. http://eprint.iacr.org/2013/663.pdf, April 2015.
Abed F, List E, Lucks S et al. Differential cryptanalysis of reduced-round SIMON and SPECK. In Proc. the 21st International Workshop on Fast Software Encryption, March 2014, pp.525-545.
Biryukov A, Roy A, Velichkov V. Differential analysis of block ciphers SIMON and SPECK. In Proc. the 21st International Workshop on Fast Software Encryption, March 2014, pp.546-570.
Wang Q, Liu Z, Varıcı K et al. Cryptanalysis of reducedround SIMON32 and SIMON48. Cryptology ePrint Archive: Report 761, 2014. http://eprint.iacr.org/2014/761.pdf, April 2015.
Bogdanov A, Rijmen V. Linear hulls with correlation zero and linear cryptanalysis of block ciphers. Cryptology ePrint Archive, Report 123, 2011. http://eprint.iacr.org/2011/123, Mar. 2011.
Bogdanov A, Wang M. Zero correlation linear cryptanalysis with reduced data complexity. In Proc. the 19th International Workshop on Fast Software Encryption, March 2012, pp.29-48.
Bogdanov A, Leander G, Nyberg K et al. Integral and multidimensional linear distinguishers with correlation zero. In Proc. the 18th International Conference on the Theory and Application of Cryptology and Information Security, December 2012, pp.244-261.
Soleimany H, Nyberg K. Zero-correlation linear cryptanalysis of reduced-round LBlock. Designs, Codes and Cryptography, 2014, 73(2): 683–698.
Biham E. On Matsui’s linear cryptanalysis. In Proc. the Workshop on the Theory and Application of Cryptographic Techniques, May 1994, pp.341-355.
Matsui M. Linear cryptoanalysis method for DES cipher. In Proc. the Workshop on the Theory and Application of Cryptographic Techniques, May 1993, pp.386-397.
Bogdanov A, Rijmen V. Linear hulls with correlation zero and linear cryptanalysis of block ciphers. Designs, Codes and Cryptography, 2014, 70(3): 369–383.
Harpes C, Kramer G G, Massey J L. A generalization of linear cryptanalysis and the applicability of Matsui’s piling-up lemma. In Proc. the 14th Advances in Cryptology-Eurocrypt, May 1995, pp.24-38.
Author information
Authors and Affiliations
Corresponding author
Additional information
This work was supported by the National Basic Research 973 Program of China under Grant No. 2013CB338002 and the National Natural Science Foundation of China under Grant Nos. 61272476, 61202420, and 61232009.
Rights and permissions
About this article
Cite this article
Yu, XL., Wu, WL., Shi, ZQ. et al. Zero-Correlation Linear Cryptanalysis of Reduced-Round SIMON. J. Comput. Sci. Technol. 30, 1358–1369 (2015). https://doi.org/10.1007/s11390-015-1603-5
Received:
Revised:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11390-015-1603-5