Practical Cryptanalysis of ARMADILLO2 View Full Text


Ontology type: schema:Chapter      Open Access: True


Chapter Info

DATE

2012

AUTHORS

María Naya-Plasencia , Thomas Peyrin

ABSTRACT

The ARMADILLO2 primitive is a very innovative hardware-oriented multi-purpose design published at CHES 2010 and based on data-dependent bit transpositions. In this paper, we first show a very unpleasant property of the internal permutation that allows for example to obtain a cheap distinguisher on ARMADILLO2 when instantiated as a stream-cipher. Then, we exploit the very weak diffusion properties of the internal permutation when the attacker can control the Hamming weight of the input values, leading to a practical free-start collision attack on the ARMADILLO2 compression function. Moreover, we describe a new attack so-called local-linearization that seems to be very efficient on data-dependent bit transpositions designs and we obtain a practical semi-free-start collision attack on the ARMADILLO2 hash function. Finally, we provide a related-key recovery attack when ARMADILLO2 is instantiated as a stream cipher. All collision attacks have been verified experimentally, they require negligible memory and a very small number of computations (less than one second on an average computer), even for the high security versions of the scheme. More... »

PAGES

146-162

Identifiers

URI

http://scigraph.springernature.com/pub.10.1007/978-3-642-34047-5_9

DOI

http://dx.doi.org/10.1007/978-3-642-34047-5_9

DIMENSIONS

https://app.dimensions.ai/details/publication/pub.1015883319


Indexing Status Check whether this publication has been indexed by Scopus and Web Of Science using the SN Indexing Status Tool
Incoming Citations Browse incoming citations for this publication using opencitations.net

JSON-LD is the canonical representation for SciGraph data.

TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT

[
  {
    "@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json", 
    "about": [
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Information and Computing Sciences", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0804", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Data Format", 
        "type": "DefinedTerm"
      }
    ], 
    "author": [
      {
        "affiliation": {
          "alternateName": "University of Versailles, France", 
          "id": "http://www.grid.ac/institutes/grid.12832.3a", 
          "name": [
            "University of Versailles, France"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Naya-Plasencia", 
        "givenName": "Mar\u00eda", 
        "id": "sg:person.013206304341.94", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013206304341.94"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Division of Mathematical Sciences, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore", 
          "id": "http://www.grid.ac/institutes/grid.59025.3b", 
          "name": [
            "Division of Mathematical Sciences, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Peyrin", 
        "givenName": "Thomas", 
        "id": "sg:person.011167161615.31", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.011167161615.31"
        ], 
        "type": "Person"
      }
    ], 
    "datePublished": "2012", 
    "datePublishedReg": "2012-01-01", 
    "description": "The ARMADILLO2 primitive is a very innovative hardware-oriented multi-purpose design published at CHES\u00a02010 and based on data-dependent bit transpositions. In this paper, we first show a very unpleasant property of the internal permutation that allows for example to obtain a cheap distinguisher on ARMADILLO2 when instantiated as a stream-cipher. Then, we exploit the very weak diffusion properties of the internal permutation when the attacker can control the Hamming weight of the input values, leading to a practical free-start collision attack on the ARMADILLO2 compression function. Moreover, we describe a new attack so-called local-linearization that seems to be very efficient on data-dependent bit transpositions designs and we obtain a practical semi-free-start collision attack on the ARMADILLO2 hash function. Finally, we provide a related-key recovery attack when ARMADILLO2 is instantiated as a stream cipher. All collision attacks have been verified experimentally, they require negligible memory and a very small number of computations (less than one second on an average computer), even for the high security versions of the scheme.", 
    "editor": [
      {
        "familyName": "Canteaut", 
        "givenName": "Anne", 
        "type": "Person"
      }
    ], 
    "genre": "chapter", 
    "id": "sg:pub.10.1007/978-3-642-34047-5_9", 
    "isAccessibleForFree": true, 
    "isPartOf": {
      "isbn": [
        "978-3-642-34046-8", 
        "978-3-642-34047-5"
      ], 
      "name": "Fast Software Encryption", 
      "type": "Book"
    }, 
    "keywords": [
      "collision attack", 
      "free-start collision attack", 
      "internal permutation", 
      "hash function", 
      "new attacks", 
      "negligible memory", 
      "stream cipher", 
      "compression function", 
      "start collision attack", 
      "recovery attack", 
      "multi-purpose design", 
      "Practical Cryptanalysis", 
      "attacks", 
      "input values", 
      "Hamming weight", 
      "unpleasant property", 
      "attacker", 
      "primitives", 
      "cipher", 
      "cryptanalysis", 
      "permutations", 
      "computation", 
      "small number", 
      "scheme", 
      "distinguisher", 
      "memory", 
      "version", 
      "design", 
      "example", 
      "number", 
      "CHES", 
      "function", 
      "diffusion properties", 
      "weight", 
      "values", 
      "properties", 
      "transposition", 
      "paper"
    ], 
    "name": "Practical Cryptanalysis of ARMADILLO2", 
    "pagination": "146-162", 
    "productId": [
      {
        "name": "dimensions_id", 
        "type": "PropertyValue", 
        "value": [
          "pub.1015883319"
        ]
      }, 
      {
        "name": "doi", 
        "type": "PropertyValue", 
        "value": [
          "10.1007/978-3-642-34047-5_9"
        ]
      }
    ], 
    "publisher": {
      "name": "Springer Nature", 
      "type": "Organisation"
    }, 
    "sameAs": [
      "https://doi.org/10.1007/978-3-642-34047-5_9", 
      "https://app.dimensions.ai/details/publication/pub.1015883319"
    ], 
    "sdDataset": "chapters", 
    "sdDatePublished": "2022-10-01T06:59", 
    "sdLicense": "https://scigraph.springernature.com/explorer/license/", 
    "sdPublisher": {
      "name": "Springer Nature - SN SciGraph project", 
      "type": "Organization"
    }, 
    "sdSource": "s3://com-springernature-scigraph/baseset/20221001/entities/gbq_results/chapter/chapter_439.jsonl", 
    "type": "Chapter", 
    "url": "https://doi.org/10.1007/978-3-642-34047-5_9"
  }
]
 

Download the RDF metadata as:  json-ld nt turtle xml License info

HOW TO GET THIS DATA PROGRAMMATICALLY:

JSON-LD is a popular format for linked data which is fully compatible with JSON.

curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-34047-5_9'

N-Triples is a line-based linked data format ideal for batch operations.

curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-34047-5_9'

Turtle is a human-readable linked data format.

curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-34047-5_9'

RDF/XML is a standard XML format for linked data.

curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-34047-5_9'


 

This table displays all metadata directly associated to this object as RDF triples.

107 TRIPLES      22 PREDICATES      63 URIs      56 LITERALS      7 BLANK NODES

Subject Predicate Object
1 sg:pub.10.1007/978-3-642-34047-5_9 schema:about anzsrc-for:08
2 anzsrc-for:0804
3 schema:author N457e01db591c48ac9b065e7b420975e5
4 schema:datePublished 2012
5 schema:datePublishedReg 2012-01-01
6 schema:description The ARMADILLO2 primitive is a very innovative hardware-oriented multi-purpose design published at CHES 2010 and based on data-dependent bit transpositions. In this paper, we first show a very unpleasant property of the internal permutation that allows for example to obtain a cheap distinguisher on ARMADILLO2 when instantiated as a stream-cipher. Then, we exploit the very weak diffusion properties of the internal permutation when the attacker can control the Hamming weight of the input values, leading to a practical free-start collision attack on the ARMADILLO2 compression function. Moreover, we describe a new attack so-called local-linearization that seems to be very efficient on data-dependent bit transpositions designs and we obtain a practical semi-free-start collision attack on the ARMADILLO2 hash function. Finally, we provide a related-key recovery attack when ARMADILLO2 is instantiated as a stream cipher. All collision attacks have been verified experimentally, they require negligible memory and a very small number of computations (less than one second on an average computer), even for the high security versions of the scheme.
7 schema:editor Nb7ec0d82b00c42449f6ba16ef130e687
8 schema:genre chapter
9 schema:isAccessibleForFree true
10 schema:isPartOf N657329839b0942c182e9e3954a9f32f7
11 schema:keywords CHES
12 Hamming weight
13 Practical Cryptanalysis
14 attacker
15 attacks
16 cipher
17 collision attack
18 compression function
19 computation
20 cryptanalysis
21 design
22 diffusion properties
23 distinguisher
24 example
25 free-start collision attack
26 function
27 hash function
28 input values
29 internal permutation
30 memory
31 multi-purpose design
32 negligible memory
33 new attacks
34 number
35 paper
36 permutations
37 primitives
38 properties
39 recovery attack
40 scheme
41 small number
42 start collision attack
43 stream cipher
44 transposition
45 unpleasant property
46 values
47 version
48 weight
49 schema:name Practical Cryptanalysis of ARMADILLO2
50 schema:pagination 146-162
51 schema:productId N38732c2b7208468b87e49045ef2dec0d
52 N9a045f180eb6414d831e086220d1b998
53 schema:publisher N452a3f3cd3f64cf888c75f6629369bf3
54 schema:sameAs https://app.dimensions.ai/details/publication/pub.1015883319
55 https://doi.org/10.1007/978-3-642-34047-5_9
56 schema:sdDatePublished 2022-10-01T06:59
57 schema:sdLicense https://scigraph.springernature.com/explorer/license/
58 schema:sdPublisher Nce862f1d0d5b4249a107d8d8c5795a2b
59 schema:url https://doi.org/10.1007/978-3-642-34047-5_9
60 sgo:license sg:explorer/license/
61 sgo:sdDataset chapters
62 rdf:type schema:Chapter
63 N29548cd927df4d11a1fa9836f97a2a59 schema:familyName Canteaut
64 schema:givenName Anne
65 rdf:type schema:Person
66 N38732c2b7208468b87e49045ef2dec0d schema:name dimensions_id
67 schema:value pub.1015883319
68 rdf:type schema:PropertyValue
69 N452a3f3cd3f64cf888c75f6629369bf3 schema:name Springer Nature
70 rdf:type schema:Organisation
71 N457e01db591c48ac9b065e7b420975e5 rdf:first sg:person.013206304341.94
72 rdf:rest N936d37456e924877a22262badb916e6b
73 N657329839b0942c182e9e3954a9f32f7 schema:isbn 978-3-642-34046-8
74 978-3-642-34047-5
75 schema:name Fast Software Encryption
76 rdf:type schema:Book
77 N936d37456e924877a22262badb916e6b rdf:first sg:person.011167161615.31
78 rdf:rest rdf:nil
79 N9a045f180eb6414d831e086220d1b998 schema:name doi
80 schema:value 10.1007/978-3-642-34047-5_9
81 rdf:type schema:PropertyValue
82 Nb7ec0d82b00c42449f6ba16ef130e687 rdf:first N29548cd927df4d11a1fa9836f97a2a59
83 rdf:rest rdf:nil
84 Nce862f1d0d5b4249a107d8d8c5795a2b schema:name Springer Nature - SN SciGraph project
85 rdf:type schema:Organization
86 anzsrc-for:08 schema:inDefinedTermSet anzsrc-for:
87 schema:name Information and Computing Sciences
88 rdf:type schema:DefinedTerm
89 anzsrc-for:0804 schema:inDefinedTermSet anzsrc-for:
90 schema:name Data Format
91 rdf:type schema:DefinedTerm
92 sg:person.011167161615.31 schema:affiliation grid-institutes:grid.59025.3b
93 schema:familyName Peyrin
94 schema:givenName Thomas
95 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.011167161615.31
96 rdf:type schema:Person
97 sg:person.013206304341.94 schema:affiliation grid-institutes:grid.12832.3a
98 schema:familyName Naya-Plasencia
99 schema:givenName María
100 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013206304341.94
101 rdf:type schema:Person
102 grid-institutes:grid.12832.3a schema:alternateName University of Versailles, France
103 schema:name University of Versailles, France
104 rdf:type schema:Organization
105 grid-institutes:grid.59025.3b schema:alternateName Division of Mathematical Sciences, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore
106 schema:name Division of Mathematical Sciences, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore
107 rdf:type schema:Organization
 




Preview window. Press ESC to close (or click here)


...