标题：Improved attacks on reduced-round camellia-128/192/256
作者：Dong, Xiaoyang ;Li, Leibo ;Jia, Keting ;Wang, Xiaoyun
作者机构：[Dong, Xiaoyang ;Li, Leibo ;Wang, Xiaoyun ] Key Laboratory of Cryptologic Technology and Information Security, Ministry of Education, Shandong Univers 更多
会议名称：RSA Conference Cryptographers’ Track, CT-RSA 2015
会议日期：21 April 2015 through 24 April 2015
来源：Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
关键词：Block cipher; Camellia; Key-dependent attack; Meet-in-the-middle attack; Multiple differential attack
摘要：Camellia is awidely used block cipher, which has been selected as an international standard by ISO/IEC. In this paper, we consider a new family of differentials of round-reduced Camellia-128 depending on different key subsets. There are totally 224 key subsets corresponding to 224 types of 8-round differentials, which cover a fraction of 1 − 1/215 of the keyspace. And each type of 8-round differential consists of 243 differentials. Combining with the multiple differential attack techniques, we give the key-dependent multiple differential attack on 10-round Camellia-128 with data complexity 291 and time complexity 2113. Furthermore, we propose a 7-round property for Camellia-192 and an 8-round property for Camellia-256, and thenmount themeet-in-the-middle attacks on 12-round Camellia-192 and 13-round Camellia-256, with complexity of 2180 encryptions and 2232.7 encryptions, respectively. All these attacks start from the first round in a single key setting. © Springer International Publishing Switzerland 2015.