Please use this identifier to cite or link to this item: https://hdl.handle.net/10356/104039
Title: Cryptanalysis of AES-PRF and its dual
Authors: Todo, Yosuke
Sun, Siwei
Iwata, Tetsu
Derbez, Patrick
Sun, Ling
Wang, Meiqin
Wang, Haoyang
Keywords: AES-PRF
Dual-AES-PRF
DRNTU::Science::Mathematics
Issue Date: 2018
Source: Derbez, P., Iwata, T., Sun, L., Sun, S., Todo, Y., Wang, H., & Wang, M. (2018). Cryptanalysis of AES-PRF and its dual. IACR Transactions on Symmetric Cryptology, 2018(2), 161-191. doi:10.13154/tosc.v2018.i2.161-191
Series/Report no.: IACR Transactions on Symmetric Cryptology
Abstract: A dedicated pseudorandom function (PRF) called AES-PRF was proposed by Mennink and Neves at FSE 2018 (ToSC 2017, Issue 3). AES-PRF is obtained from AES by using the output of the 5-th round as the feed-forward to the output state. This paper presents extensive security analysis of AES-PRF and its variants. Specifically, we consider unbalanced variants where the output of the s-th round is used as the feed-forward. We also analyze the security of “dual” constructions of the unbalanced variants, where the input state is used as the feed-forward to the output of the s-th round. We apply an impossible differential attack, zero-correlation linear attack, traditional differential attack, zero correlation linear distinguishing attack and a meet-in-the-middle attack on these PRFs and reduced round versions. We show that AES-PRF is broken whenever s ≤ 2 or s ≥ 6, or reduced to 7 rounds, and Dual-AES-PRF is broken whenever s ≤ 4 or s ≥ 8. Our results on AES-PRF improve the initial security evaluation by the designers in various ways, and our results on Dual-AES-PRF give the first insight to its security.
URI: https://hdl.handle.net/10356/104039
http://hdl.handle.net/10220/49461
DOI: 10.13154/tosc.v2018.i2.161-191
Rights: © 2018 The Author(s). All rights reserved. This paper was published by Ruhr University Bochum in IACR Transactions on Symmetric Cryptology and is made available with permission of The Author(s).
Fulltext Permission: open
Fulltext Availability: With Fulltext
Appears in Collections:SPMS Journal Articles

Files in This Item:
File Description SizeFormat 
Cryptanalysis of AES-PRF and its dual.pdf1.26 MBAdobe PDFThumbnail
View/Open

Google ScholarTM

Check

Altmetric


Plumx

Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.