Please use this identifier to cite or link to this item:
Title: Cryptanalysis of AES-PRF and its dual
Authors: Todo, Yosuke
Sun, Siwei
Iwata, Tetsu
Derbez, Patrick
Sun, Ling
Wang, Meiqin
Wang, Haoyang
Keywords: AES-PRF
Issue Date: 2018
Source: Derbez, P., Iwata, T., Sun, L., Sun, S., Todo, Y., Wang, H., & Wang, M. (2018). Cryptanalysis of AES-PRF and its dual. IACR Transactions on Symmetric Cryptology, 2018(2), 161-191. doi:10.13154/tosc.v2018.i2.161-191
Series/Report no.: IACR Transactions on Symmetric Cryptology
Abstract: A dedicated pseudorandom function (PRF) called AES-PRF was proposed by Mennink and Neves at FSE 2018 (ToSC 2017, Issue 3). AES-PRF is obtained from AES by using the output of the 5-th round as the feed-forward to the output state. This paper presents extensive security analysis of AES-PRF and its variants. Specifically, we consider unbalanced variants where the output of the s-th round is used as the feed-forward. We also analyze the security of “dual” constructions of the unbalanced variants, where the input state is used as the feed-forward to the output of the s-th round. We apply an impossible differential attack, zero-correlation linear attack, traditional differential attack, zero correlation linear distinguishing attack and a meet-in-the-middle attack on these PRFs and reduced round versions. We show that AES-PRF is broken whenever s ≤ 2 or s ≥ 6, or reduced to 7 rounds, and Dual-AES-PRF is broken whenever s ≤ 4 or s ≥ 8. Our results on AES-PRF improve the initial security evaluation by the designers in various ways, and our results on Dual-AES-PRF give the first insight to its security.
Rights: © 2018 The Author(s). All rights reserved. This paper was published by Ruhr University Bochum in IACR Transactions on Symmetric Cryptology and is made available with permission of The Author(s).
metadata.item.grantfulltext: open
metadata.item.fulltext: With Fulltext
Appears in Collections:SPMS Journal Articles

Files in This Item:
File Description SizeFormat 
Cryptanalysis of AES-PRF and its dual.pdf1.26 MBAdobe PDFThumbnail

Page view(s)

checked on Dec 25, 2019


checked on Dec 25, 2019

Google ScholarTM



Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.