CLEFIA动态密码结构的零相关线性区分器构造研究

doi:10.3969/j.issn.1671-1122.2024.06.012

摘要/Abstract

摘要：

随着分组密码应用研究的不断深入，研究者发现，“动态可变”分组密码设计可有效提升分组密码算法的应用灵活性和部署安全性。CLEFIA算法遵循“动态可变”思想，一些学者对CLEFIA算法的线性变换层加以改进，使得第6t(t≥1)轮中的扩散层可以从{0,1}⁴上的多个线性双射变换中任意选取。为分析评估CLEFIA动态密码结构的安全性能，文章主要采取零相关线性分析理论，利用中间相错技术和矩阵表示方法，分析构造CLEFIA动态密码结构的零相关线性区分器。研究证明，在轮函数为双射的前提条件下，CLEFIA动态密码结构动态线性层控制参数μ_i∈$F$₂,(0≤i≤4)无论取何值，总存在8轮零相关线性区分器；当控制参数μ₀=0时，存在9轮零相关线性区分器。

关键词: 分组密码, CLEFIA动态密码结构, 零相关线性分析, 中间相错技术, 矩阵表示

Abstract:

With the deepening of the research on block cipher application, the design of “dynamic variable” block cipher can effectively improve the application flexibility and deployment security of block cipher algorithm. CLEFIA algorithm follows the idea of “dynamic variable”, some scholars have improved the linear transformation layer of CLEFIA algorithm, so that the diffusion layer in the 6t(t≥1) round can be arbitrarily selected from the {0,1}⁴multiple linear bijection transforms. In order to analyze and evaluate the security performance of CLEFIA dynamic cipher structure, this paper mainly adopted the theory of zero-correlation linear analysis, and used the miss-in-the-middle technique and matrix representation method to analyze the zero-correlation linear discriminator of CLEFIA dynamic cipher structure. The results show that under the condition that the wheel function is bijective, no matter what the control parameters μ_i∈F₂,(0≤i≤4) of the dynamic linear layer of CLEFIA dynamic cipher structure are, there are always 8 rounds of zero-correlation linear discriminators. When controlling parameters μ₀=0, there are 9 rounds of zero-correlation linear discriminators.

Key words: block cipher, CLEFIA dynamic cipher structure, zero correlation linear analysis, miss-in-the-middle technique, matrix representation

中图分类号:

TP309

沈霞民, 熊涛, 李华, 沈璇. CLEFIA动态密码结构的零相关线性区分器构造研究[J]. 信息网络安全, 2024, 24(6): 948-958.

SHEN Xiamin, XIONG Tao, LI Hua, SHEN Xuan. Research on the Construction of Zero-Correlation Linear Discriminator for CLEFIA Dynamic Cipher Structure[J]. Netinfo Security, 2024, 24(6): 948-958.

图/表 12

表1

图1

图2

图3

图4

图5

图6

图7

图8

图9

图10

图11

参考文献 20

[1]	WU Wenling, FENG Dengguo, ZHANG Wentao. Design and Analysis of Block Cipher(The Second Edition)[M]. Beijing: Tsinghua University Press, 2009.
	吴文玲, 冯登国, 张文涛. 分组密码的设计与分析(第二版)[M]. 北京: 清华大学出版社, 2009.
[2]	ZHENG Jianhua, REN Sheng, JING Qing, et al. Z Cipher Scheme[J]. Journal of Cryptologic Research, 2018, 5(6): 579-590.
	郑建华, 任盛, 靖青, 等. Z密码算法设计方案[J]. 密码学报, 2018, 5(6): 579-590. doi: 10.13868/j.cnki.jcr.000267
[3]	YANG Hongzhi, HAN Wenbao, SI Xueming. New Design Method for Cipher Algorithms for Block Cipher[J]. Computer Science, 2010, 37(7): 102-104.
	杨宏志, 韩文报, 斯雪明. 一种新的密码算法设计方法[J]. 计算机科学, 2010, 37(7): 102-104.
[4]	HU Xiangyi, LIU Tong. Research and Discussion on Dynamic Symmetric Cryptography Algorithm[J]. Network Security Technology and Application, 2006, 6(3): 69-71.
	胡祥义, 刘彤. 动态对称密码算法的研究与探讨[J]. 网络安全技术与应用, 2006, 6(3): 69-71.
[5]	CHEN Like, ZHANG Runtong. Novel Software Block Cipher Using Dynamic S-Box and P-Box[J]. Computer Science, 2009, 36(2): 78-81.
	陈利科, 张润彤. 一种基于动态S-盒P-盒的快速分组密码算法—DSP[J]. 计算机科学, 2009, 36(2): 78-81.
[6]	YANG Jilin, WANG Nianping. Security Evaluation Against Differential Cryptanalysis for CLEFIA-Like Dynamic Cryptographic Structure[J]. Acta Electronica Sinica, 2021, 49(11): 2279-2283. doi: 10.12263/DZXB.20180973
	杨继林, 王念平. 类CLEFIA动态密码结构抵抗差分密码分析能力评估[J]. 电子学报, 2021, 49(11): 2279-2283. doi: 10.12263/DZXB.20180973
[7]	ZHOU Shuyang, PENG Manman, XIAO Xiaohuan. An Improvement of SMS4 Algorithm Based on Dynamic[J]. Microelectronics & Computer, 2011, 28(9): 86-88.
	周术洋, 彭蔓蔓, 肖小欢. 一种基于动态思想的SMS4算法改进与实现[J]. 微电子学与计算机, 2011, 28(9): 86-88.
[8]	LI Yanjun, WANG Qi, XIANG Yong, et al. Design and Implementation of Dynamic Cipher Component Involutory MDS Matrix[J]. Microelectronics & Computer, 2023, 37(12): 1-2.
	李艳俊, 王琦, 项勇, 等. 动态密码组件对合MDS矩阵的设计与实现[J]. 微电子学与计算机, 2023, 37(12): 1-2.
[9]	SHIRAI T, SHIBUTANI K, AKISHITA T, et al. The 128-Bit Blockcipher CLEFIA (Extended Abstract)[C]// Springer. International Workshop on Fast Software Encryption. Heidelberg: Springer, 2007: 181-195.
[10]	ZHONG Yue, GU Jieming, CAO Honglin. Survey of Lightweight Block Cipher[J]. Computer Science, 2023, 50(9): 3-15. doi: 10.11896/jsjkx.230500190
	钟悦, 谷杰铭, 曹洪林. 轻量级分组密码算法综述[J]. 计算机科学, 2023, 50(9): 3-15. doi: 10.11896/jsjkx.230500190
[11]	WANG Nianping, GUO Zhicheng. Security Evaluation against Differential Cryptanalysis for Dynamic Cryptographic Structure[J]. Journal on Communications, 2021, 42(8): 70-79. doi: 10.11959/j.issn.1000-436x.2021112
	王念平, 郭祉成. 动态密码结构抵抗差分密码分析能力评估[J]. 通信学报, 2021, 42(8): 70-79. doi: 10.11959/j.issn.1000-436x.2021112
[12]	ZHANG Wenying, HAN Jing. Impossible Differential Analysis of Reduced Round CLEFIA[C]// Springer. Information Security & Cryptology. Heidelberg: Springer, 2009: 181-191.
[13]	CUI Ting, JIN Chenhui. Construction of Zero-Correlation Linear Hull for CLEFIA-Like Structure with SPN Round Functions[J]. Journal of Electronics&Information Technology, 2012, 34(1): 227-230.
	崔霆, 金晨辉. 嵌套代替-扩散网络的CLEFIA结构零相关线性逼近的构造[J]. 电子与信息学报, 2012, 34(1): 227-230.
[14]	LI Yanjun, WU Wenling, ZHENG Xiulin. Integral Property Analysis on the Structure of SP-GFS[J]. Journal of Electronics & Information Technology, 2014, 36(8): 1798-1803.
	李艳俊, 吴文玲, 郑秀林. SP-GFS结构的积分性质研究[J]. 电子与信息学报, 2014, 36(8): 1798-1803.
[15]	BOGDANOV A, RIJMEN V. Linear Hulls with Correlation Zero and Linear Cryptanalysis of Block Ciphers[J]. Designs, Codes and Cryptography, 2014, 70(3): 369-383.
[16]	BIHAM E, BIRYUKOV A, SHAMIR A. Cryptanalysis of Skipjack Reduced to 31 Rounds Using Impossible Differentials[J]. Journal of Cryptology, 1999, 18: 291-311.
[17]	SHEN Xuan, WANG Xinmei, HE Jun, et al. Revised Impossible Differential Crptanalysis of PFP Block Cipher[J]. Computer Science, 2020, 47(7): 263-267.
	沈璇, 王欣玫, 何俊, 等. PFP算法改进的不可能差分分析[J]. 计算机科学, 2020, 47(7): 263-267.
[18]	ZHAO Guangyao, SHEN Xuan, YU Bo, et al. Impossible Differential Cryptanalysis of Reduced-Round Ultra-Lightweight Block Cipher PFP[J]. Journal of Computer Applications, 2023, 43(9): 2784-2788. doi: 10.11772/j.issn.1001-9081.2022091395
	赵光耀, 沈璇, 余波, 等. 缩减轮的超轻量级分组密码算法PFP的不可能差分分析[J]. 计算机应用, 2023, 43(9): 2784-2788. doi: 10.11772/j.issn.1001-9081.2022091395
[19]	WANG Meiqin, WEN Long. Research on Zero-Correlation Linear Cryptanalysis[J]. Journal of Cryptologic Research, 2014, 1(3): 296-310.
	王美琴, 温隆. 零相关线性分析研究[J]. 密码学报, 2014, 1(3): 296-310. doi: 10.13868/j.cnki.jcr.000028
[20]	DIFFIE W, HELLMAN M E. Special Feature Exhaustive Cryptanalysis of the NBS Data Encryption Standard[J]. Computer, 2006, 10(6): 74-84.

密码结构	分析方法	区分器轮数	来源
CLEFIA 密码结构	不可能差分分析	9	文献[12]
	零相关线性分析	9	文献[13]
	积分分析	9	文献[14]
CLEFIA 动态密码结构	差分分析	6	文献[11]
CLEFIA 动态密码结构	零相关线性分析	8/9	本文