Integral and impossible‐differential attacks on the reduced‐round Lesamnta‐LW‐BC
Open Access
- 14 September 2021
- journal article
- research article
- Published by Institution of Engineering and Technology (IET) in IET Information Security
- Vol. 16 (2), 75-85
- https://doi.org/10.1049/ise2.12044
Abstract
Lesamnta-LW-BC is the internal block cipher of the Lesamnta-LW lightweight hash function, specified in ISO/IEC 29192-5:2016. It is based on the unbalanced Feistel network and Advanced Encryption Standard round function. In this study, the security of Lesamnta-LW-BC against integral and impossible-differential attacks is evaluated. Specifically, the authors searched for the integral distinguishers and impossible differentials with Mixed-Integer Linear Programming-based methods. As a result, the discovered impossible differential can reach up to 21 rounds, while three integral distinguishers reaching 18, 19 and 25 rounds are obtained, respectively. Moreover, it is also feasible to construct a 47-round integral distinguisher in the known-key setting. Finally, a 20-round key-recovery attack is proposed based on the discovered 18-round integral distinguisher and a 19-round key-recovery attack using a 17-round impossible differential. To the best of the authors' knowledge, this is the first third-party cryptanalysis of Lesamnta-LW-BC.Keywords
Funding Information
- Support Center for Advanced Telecommunications Technology Research Foundation (KAKENHI 19H02141)
- Japan Society for the Promotion of Science (KAKENHI 20J23526)
This publication has 12 references indexed in Scilit:
- Applying MILP Method to Searching Integral Distinguishers Based on Division Property for 6 Lightweight Block CiphersPublished by Springer Science and Business Media LLC ,2016
- Bit-Based Division Property and Application to Simon FamilyPublished by Springer Science and Business Media LLC ,2016
- Structural Evaluation by Generalized Integral PropertyLecture Notes in Computer Science, 2015
- Differential and Linear Cryptanalysis Using Mixed-Integer Linear ProgrammingLecture Notes in Computer Science, 2012
- An AES Based 256-bit Hash Function for Lightweight Applications: Lesamnta-LWIEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences, 2012
- M-theory and seven-dimensional inhomogeneous Sasaki-Einstein manifoldsJournal of High Energy Physics, 2011
- A Lightweight 256-Bit Hash Function for Hardware and Low-End Devices: Lesamnta-LWLecture Notes in Computer Science, 2011
- Integral CryptanalysisLecture Notes in Computer Science, 2002
- The block cipher SquarePublished by Springer Science and Business Media LLC ,1997
- Differential Cryptanalysis of the Data Encryption StandardPublished by Springer Science and Business Media LLC ,1993