缩减轮GRANULE算法的中间相遇分析
Meet-in-the-Middle Attacks on Reduced-Round GRANULE
DOI: 10.12677/mos.2025.148570, PDF,    科研立项经费支持
作者: 刘先蓓:安徽财经大学统计与应用数学学院,安徽 蚌埠;张艺昕:上海理工大学光电信息与计算机工程学院,上海
关键词: 轻量级分组密码GRANULE算法Feistel结构中间相遇分析Lightweight Block Ciphers GRANULE Feistel Structure Meet-in-the-Middle Attack
摘要: 轻量级分组密码是为计算资源受限的环境而设计的加密算法。它具有计算开销小、占用存储空间少、能耗低等优点,广泛用于嵌入式系统、智能卡以及物联网等应用场景。然而,为了追求更高的实现效率,设计轻量级分组密码算法时会牺牲部分安全性,所以有必要评估它的安全强度。本文利用中间相遇分析法对轻量级分组密码GRANULE算法的安全性进行了评估。首先,构造了7轮的GRANULE的中间相遇区分器,随后在它的前面接4轮、后面接3轮,构建了14轮的GRANULE中间相遇分析的攻击路径,并在结合GRANULE的轮密钥之间的一些线性关系之后,最终攻击需要的数据复杂度为260选择明文,时间复杂度为2111.2次14轮GRANULE加密,存储复杂度为2104.9个64比特块。此结果是对GRANULE安全性分析的有效补充,攻击结果表明GRANULE能较好地抵抗中间相遇攻击。
Abstract: Lightweight block cipher is an encryption algorithm designed for environments with limited computing resources. It has the advantages of low computational cost, less storage space occupation, and low energy consumption, and is widely used in application scenarios such as embedded systems, smart cards, and the Internet of Things. However, in order to pursue higher implementation efficiency, designing lightweight block cipher algorithms may sacrifice some security, so it is necessary to evaluate its security strength. In this article we evaluate the security of the lightweight block cipher GRANULE algorithm using the intermediate encounter analysis method. Firstly, a 7-round GRANULE intermediate encounter discriminator was constructed, followed by 4 rounds in front and 3 rounds behind it. 14-round GRANULE intermediate encounter analysis attack path was constructed, and after combining some linear relationships between GRANULE’s round keys. Data complexity is 260 chosen plaintexts, time complexity is 2111.2 14-round GRANULE encryption, and storage complexity is 2104.9 64-bit blocks. This result is an effective supplement to the security analysis of GRANULE, and the attack results indicate that GRANULE can resist intermediate encounter attacks well.
文章引用:刘先蓓, 张艺昕. 缩减轮GRANULE算法的中间相遇分析[J]. 建模与仿真, 2025, 14(8): 319-325. https://doi.org/10.12677/mos.2025.148570

参考文献

[1] Banik, S., Bao, Z., Isobe, T., Kubo, H., Liu, F., Minematsu, K., et al. (2021) WARP: Revisiting GFN for Lightweight 128-Bit Block Cipher. In: Dunkelman, O., Jacobson Jr., M.J. and O’Flynn, C., Eds., Selected Areas in Cryptograph, Springer, 535-564. [Google Scholar] [CrossRef
[2] Bogdanov, A., Knudsen, L.R., Leander, G., Paar, C., Poschmann, A., Robshaw, M.J.B., et al. (2007) PRESENT: An Ultra-Lightweight Block Cipher. In: Paillier, P. and Verbauwhede, I., Eds., Cryptographic Hardware and Embedded Systems—CHES 2007, Springer, 450-466. [Google Scholar] [CrossRef
[3] Wu, W. and Zhang, L. (2011) LBlock: A Lightweight Block Cipher. In: Lopez, J. and Tsudik, G., Eds., Applied Cryptography and Network Security, Springer, 327-344. [Google Scholar] [CrossRef
[4] Bansod, B., Patil, A. and Pisharoty, N. (2018) Granule: An Ultra Lightweight Cipher Design for Embedded Security.
https://eprint.iacr.org/2018/600
[5] 石淑英, 何骏. GRANULE算法的不可能差分分析[J]. 计算机工程, 2019, 45(10): 134-138.
[6] 武小年, 李迎新, 韦永壮, 等. GRANULE和MANTRA算法的不可能差分区分器分析[J]. 通信学报, 2020, 41(1): 94-101.
[7] 赵晨曦. 轻量级分组密码的不可能差分分析[D]: [硕士学位论文]. 西安: 西安电子科技大学, 2021: 41-51.
[8] 刘先蓓, 刘亚. GRANULE算法的截断不可能差分分析[J]. 山西师范大学学报(自然科学版), 2023, 37(1): 41-51.
[9] Diffie, W. and Hellman, M.E. (1977) Special Feature Exhaustive Cryptanalysis of the NBS Data Encryption Standard. Computer, 10, 74-84. [Google Scholar] [CrossRef
[10] Demirci, H. and Selçuk, A.A. (2008) A Meet-In-The-Middle Attack on 8-Round AES. In: Nyberg, K., Ed., Fast Software Encryption, Springer, 116-126. [Google Scholar] [CrossRef
[11] 李超, 孙兵, 李瑞林. 分组密码的攻击方法与实例分析[M]. 北京: 科学出版社, 2010.
[12] 任炯炯, 侯泽洲, 李曼曼, 等. 改进的减轮MIBS-80密码的中间相遇攻击[J]. 电子与信息学报, 2022, 44(8): 2914-2923.
[13] 刘亚, 刁倩倩, 李玮, 等. 10轮Midori128的中间相遇攻击[J]. 计算机应用研究, 2019, 36(1): 230-234, 238.
[14] 郑雅菲, 吴文玲. LBlock算法的改进中间相遇攻击[J]. 计算机学报, 2017, 40(5): 1080-1091.

为你推荐