An Optimal Sampling Technique for Distinguishing Random S-boxes

Forskningsoutput: Kapitel i bok/rapport/Conference proceedingKonferenspaper i proceedingPeer review

8 Nedladdningar (Pure)

Sammanfattning

The nonrandom behavior of the outputs of a random S-box can be exploited when constructing distinguishers for cryptographic primitives. Different methods of constructing samples from the outputs have been used in the literature. However, it has been unclear exactly how these methods differ and which method is optimal. We analyze four different sampling techniques. We prove that two of these sampling techniques result in dependent samples. We further show one sampling technique that is optimal in terms of error probabilities in the resulting distinguisher. However, this sampling technique is quite impractical as it requires very large storage. We further show a fourth sampling technique that is much more practical, and we prove that it is equivalent to the optimal one. We also show an improved algorithm for calculating the associated probability distributions that are required for the attack.
Originalspråkengelska
Titel på värdpublikationInformation Theory Proceedings (ISIT), 2012 IEEE International Symposium on
RedaktörerPramod Viswanath
FörlagIEEE - Institute of Electrical and Electronics Engineers Inc.
Sidor846-850
Antal sidor5
ISBN (elektroniskt)978-1-4673-2578-3
ISBN (tryckt)978-1-4673-2580-6
DOI
StatusPublished - 2012
EvenemangISIT 2012 - Cambridge, MA, U.S.A.
Varaktighet: 2012 juli 12012 juli 6

Publikationsserier

Namn
ISSN (tryckt)2157-8117
ISSN (elektroniskt)2157-8095

Konferens

KonferensISIT 2012
Period2012/07/012012/07/06

Ämnesklassifikation (UKÄ)

  • Elektroteknik och elektronik

Fingeravtryck

Utforska forskningsämnen för ”An Optimal Sampling Technique for Distinguishing Random S-boxes”. Tillsammans bildar de ett unikt fingeravtryck.

Citera det här