Improved Integral Attack On Hight
IEICE TRANSACTIONS ON FUNDAMENTALS OF ELECTRONICS COMMUNICATIONS AND COMPUTER SCIENCES(2019)
摘要
HIGHT is a 64-bit block lightweight cipher, which adopts the ARX-based generalized Feistel network, and it accepts a 128-bit key. It is a standard encryption algorithm in South Korea and also is internationally standardized by ISO/IEC 18033-3. Therefore, many third-party cryptanalyses have been proposed against HIGHT. Impossible differential and integral attacks are applied to reduced-round HIGHT, and especially, the impossible differential attack causes the 27-round attack, which is the current best attack under the single-key setting. In this paper, we propose some improved integral attacks against HIGHT. We first apply the division property to HIGHT and find new 19-round integral characteristics, which are improved by two rounds compared with the previous best ones. We append 9-round key recovery to these characteristics and it enables us to attack 28-round HIGHT. Its time complexity is 2(127.02) where 2(63) chosen plaintexts and 2(117) memory are required. Moreover, we can attack 29-round HIGHT if the full codebook is used, where its time and memory complexities are 2(126.07) and 2(118), respectively. It improves by two rounds compared with the previous best attack.
更多查看译文
关键词
block cipher, HIGHT, integral attack, division property, MILP
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络