Improved Neural Network Differential Distinguisher of Simon32/64 and Simeck32/64

doi:10.3969/j.issn.1671-1122.2025.02.006

Abstract

Abstract:

Neural distinguishers have good generalisation ability as well as powerful learning ability, but there is still a lack of perfect and universal neural network distinguishing model. In order to increase the accuracy of the neural distinguishers of Simon32/64 and Simeck32/64, increase the generalizability of the neural differential distinguishers, this paper proposed three improvement directions. First, multiple ciphertext pairs were used as inputs to the Simon32/64 and Simeck32/64 neural distinguishers, and the Inception network module was added to the neural network model to improve the overfitting phenomenon. Then, added Simon32/64 and Simeck32/64 penultimate round difference information to the multi-ciphertext pair input samples, constructed the netural distinguishers of 7 to 10 rounds of Simon32/64 and 7 to 11 rounds of Simeck32/64. Finelly, multiple ciphertext pairs were combined with polyhedral difference, constructed polyhedral differential distinguishers for Simon32/64 and Simeck32/64. The accuracy of the polyhedral neural distinguishers were improved. The experimental results show that the new polyhedral netural distinguishers of 8-round of Simon32/64 reach the accuracy of 99.54% and 8-round of Simeck32/64 reach the accuracy of 99.67%. In addition, the improved netural distinguishers of the 10-round of Simon32/64 and Simeck32/64 are applied to the final round of key recovery attacks of 12-round of Simon32/64 and Simeck32/64, the success rate of the attacks respectively reaches 86% and 97% in 100 attack experiments.

Key words: deep learning, Inception module, multiple ciphertext pairs, polyhedral difference, key recovery attack

CLC Number:

TP309

WU Haoying, CHEN Jie, LIU Jun. Improved Neural Network Differential Distinguisher of Simon32/64 and Simeck32/64[J]. Netinfo Security, 2025, 25(2): 249-259.

Figures/Tables 16

References 24

[1]	BOGDANOV A, KNUDSEN L R, LEANDER G, et al. PRESENT: An Ultra-Lightweight Block Cipher[C]// Springer. Cryptographic Hardware and Embedded Systems-CHES 2007. Heidelberg: Springer, 2007: 450-466.
[2]	WU Wenling, ZHANG Lei. LBlock: A Lightweight Block Cipher[C]// Springer. Applied Cryptography and Network Security (ACNS 2011). Heidelberg: Springer, 2011: 327-344.
[3]	BEAULIEU R, SHORS D, SMITH J, et al. The Simon and Speck Families of Lightweight Block Ciphers[C]// IEEE. 2015 52nd ACM/EDAC/IEEE Design Automation Conference (DAC). New York: IEEE, 2015: 1-6.
[4]	YANG Gangqiang, ZHU Bo, SUDER V, et al. The Simeck Family of Lightweight Block Ciphers[C]// Springer. Cryptographic Hardware and Embedded Systems-CHES 2015. Heidelberg: Springer, 2015: 307-329.
[5]	WANG Meiqin. Differential Cryptanalysis of Reduced-Round PRESENT[C]// Springer. Progress in Cryptology-AFRICACRYPT 2008. Heidelberg: Springer, 2008: 40-49.
[6]	WANG Ning, WANG Xiaoyun, JIA Keting. Improved Impossible Differential Attack on Reduced-Round LBlock[C]// Springer. Information Security and Cryptology-ICISC 2015. Heidelberg: Springer, 2016: 136-152.
[7]	LI Mingming, GUO Jiansheng, CUI Jingyi, et al. Impossible Differential Cryptanalysis of SPECK[C]// Springer. Trusted Computing and Information Security. Heidelberg: Springer, 2019: 16-31.
[8]	SUN Ling, FU Kai, WANG Meiqin. Improved Zero-Correlation Cryptanalysis on SIMON[C]// Springer. Information Security and Cryptology. Heidelberg: Springer, 2016: 125-143.
[9]	QIAO Kexin, HU Lei, SUN Siwei. Differential Analysis on Simeck and SIMON with Dynamic Key-Guessing Techniques[C]// Springer. Information Systems Security and Privacy. Heidelberg: Springer, 2017: 64-85.
[10]	GOHR A. Improving Attacks on Round-Reduced Speck32/64 Using Deep Learning[C]// Springer. Advances in Cryptology-CRYPTO 2019. Heidelberg: Springer, 2019: 150-179.
[11]	PAL D, MANDAL U, DAS A, et al. Deep Learning Based Differential Classifier of PRIDE and RC5[C]// Springer. Applications and Techniques in Information Security. Heidelberg: Springer, 2023: 46-58.
[12]	JAIN A, KOHLI V, MISHRA G. Deep Learning-Based Differential Distinguisher for Lightweight Cipher PRESENT[EB/OL]. (2020-07-12)[2024-04-30]. https://eprint.iacr.org/2020/846, 2020-07-12/2023-1-17.
[13]	HOU Zezhou, CHEN Shaozhen, REN Jiongjiong. Research and Application of Deep Learning on Differential Distinguisher of Block Cipher[J]. Journal of Software, 2022, 33(5): 1893-1906.
	侯泽洲, 陈少真, 任炯炯. 深度学习在分组密码差分区分器上的研究应用[J]. 软件学报, 2022, 33(5): 1893-1906.
[14]	ZHANG Liu, WANG Zilong, WANG Baocang. Improving Differential-Neural Cryptanalysis with Inception[EB/OL]. (2022-02-20)[2024-04-30]. https://eprint.iacr.org/2022/183, 2022-02-10/2023-1-17.
[15]	BENAMIRA A, GERAULT D, PEYRIN T, et al. A Deeper Look at Machine Learning-Based Cryptanalysis[C]// Springer. Cryptology-EUROCRYPT 2021. Heidelberg: Springer, 2021: 805-835.
[16]	BAKSI A. Machine Learning-Assisted Differential Distinguishers for Lightweight Ciphers[C]// Springer. Classical and Physical Security of Symmetric Key Cryptographic Algorithms. Heidelberg: Springer, 2022: 141-162.
[17]	HOU Zezhou, REN Jiongjiong, CHEN Shaozhen. Improve Neural Distinguisher for Cryptanalysis[EB/OL]. (2021-08-06)[2024-04-30]. https://eprint.iacr.org/2021/1017, 2021-08-06/2023-1-17.
[18]	CHEN Yi, SHEN Yantian, YU Hongbo, et al. A New Neural Distinguisher Considering Features Derived from Multiple Ciphertext Pairs[J]. The Computer Journal, 2023, 66(6): 1419-1433.
[19]	FU Chaohui, DUAN Ming, WEI Qiang, et al. Polytopic Differential Attack Based on Deep Learning and Its Application[J]. Journal of Cryptologic Research, 2021, 8(4): 591-600.
[20]	BIHAM E, SHAMIR A. Differential Cryptanalysis of DES-Like Cryptosystems[J]. Journal of Cryptology, 1991, 4(1): 63-72.
[21]	TIESSEN T. Polytopic Cryptanalysis[C]// Springer. Cryptology-EUROCRYPT 2016. Heidelberg: Springer, 2016: 214-239.
[22]	SZEGEDY C, LIU Wei, JIA Yangqing, et al. Going Deeper with Convolutions[C]// IEEE. 2015 IEEE Conference on Computer Vision and Pattern Recognition (CVPR). New York: IEEE, 2015: 1-9.
[23]	YANG Xiaoxue, CHEN Jie, HAN Lidong. Application of Deep Learning in Differential Cryptanalysis of ARX Block Ciphers[J]. Journal of Cryptologic Research, 2022, 9(5): 923-935.
[24]	SU Hengchuan, ZHU Xuanyong, MING Duan.Polytopic Attack on Round-Reduced Simon32/64 Using Deep Learning[C]// Springer. Information Security and Cryptology. Heidelberg: Springer, 2021: 3-20.

密码	轮数	$N{{D}_{k=1}}$(文献[10]方法)	$N{{D}_{k=2}}$	$N{{D}_{k=4}}$	$N{{D}_{k=8}}$	$N{{D}_{k=16}}$
Simon32/64	7	96.73 %	99.22 %	99.51 %	99.16 %	99.12 %
Simon32/64	8	76.76 %	77.36 %	80.38 %	85.46 %	89.21 %
Simon32/64	9	62.70 %	64.38 %	67.17 %	62.84 %	62.50 %
Simeck32/64	7	98.75 %	99.78 %	99.81 %	99.96 %	99.99 %
Simeck32/64	8	86.77 %	91.38 %	97.13 %	97.31 %	97.92 %
Simeck32/64	9	67.26 %	68.58 %	67.95 %	66.98 %	66.90 %

轮数	old测试准确率	$N{{D}_{\mathbf{1}}}$测试准确率	$N{{D}_{\mathbf{2}}}$测试准确率
7	96.73 %	99.82 %	99.80 %
8	76.76 %	92.92 %	91.49 %
9	62.70 %	72.85 %	71.85 %
10	50.02 %	59.26 %	58.67 %

轮数	old测试准确率	$N{{D}_{\mathbf{1}}}$测试准确率	$N{{D}_{\mathbf{2}}}$测试准确率
7	98.75 %	99.97 %	99.97 %
8	86.77 %	97.46 %	97.03 %
9	67.26 %	78.88 %	78.34 %
10	54.69 %	60.33 %	59.72 %
11	—	52.07 %	—

密码	轮数	数据复杂度	计算复杂度	攻击成功率	结果来源
Simon32/64	11	${{2}^{25}}$	${{2}^{30.9}}$	100% （1000次攻击）	文献[23]
Simon32/64	11	${{2}^{9}}$	—	95.6% （1000次攻击）	文献[24]
Simon32/64	12	${{2}^{9}}$	${{2}^{25}}$	86% （100次攻击）	本文
Simeck32/64	10	${{2}^{7.6}}$	${{2}^{29.4}}$	80% （50次攻击）	文献[19]
Simeck32/64	12	${{2}^{9}}$	${{2}^{25}}$	97% （100次攻击）	本文

轮数	$N{{D}_{3}}$测试准确率	$N{{D}_{1}}$测试准确率	$ND'_{1}$测试准确率
7	99.99 %	99.82 %	99.44 %
8	99.54 %	92.92 %	92.51 %
9	83.62 %	72.85 %	63.73 %
10	63.44 %	59.26 %	50.17 %
11	51.65 %	—	—