Add to ORKGAbstract. An AES-like lightweight block cipher, namely Zorro, was proposed in CHES 2013. While it has a 16-byte state, it uses only 4 S-Boxes per round. This weak nonlinearity was widely criticized, insofar as it has been directly exploited in all the attacks on Zorro reported by now, including the weak key, reduced round, and even full round attacks. In this paper, Using some observations discovered by Wang et. al., we present new differential and linear attacks on Zorro, both of which recover the full secret key with practical complexity. These attacks are based on very efficient distinguishers that have only two active sboxes per four rounds. The time complexity of our differential and linear attacks are 252.74 and 257.85 and the data co...
Abstract. Impossible differential attacks are among the most powerful forms of cryptanalysis against...
In this paper, we present an improved differential-linear cryptanalysis of the ChaCha stream cipher....
International audiencetextit{Piccolo} is a new lightweight block cipher proposed at CHES 2011~\cite{...
Abstract. An AES-like lightweight block cipher, namely Zorro, was proposed in CHES 2013. While it ha...
Abstract. Zorro is a 128-bit lightweight block cipher supporting 128-bit keys, presented at CHES 201...
International audienceDesign of SP networks in which the non-linear layer is applied to only a part ...
International audienceDesign of SP networks in which the non-linear layer is applied to only a part ...
Abstract. Design of SP networks in which the non-linear layer is applied to only a part of the state...
The design and analysis of lightweight block ciphers has been a very active research area over the l...
Abstract. The design and analysis of lightweight block ciphers has been a very active research area ...
International audienceThe design and analysis of lightweight block ciphers has been a very active re...
Differential and linear cryptanalysis are two of the most powerful techniques to analyze symmetric-k...
Abstract This work concentrates on differential-linear distinguishing attacks on the prominent ARX-b...
Abstract. The mere number of various apparently different statistical attacks on block ciphers has r...
Impossible differential attacks are among the most powerful forms of cryptanalysis against block cip...
Abstract. Impossible differential attacks are among the most powerful forms of cryptanalysis against...
In this paper, we present an improved differential-linear cryptanalysis of the ChaCha stream cipher....
International audiencetextit{Piccolo} is a new lightweight block cipher proposed at CHES 2011~\cite{...
Abstract. An AES-like lightweight block cipher, namely Zorro, was proposed in CHES 2013. While it ha...
Abstract. Zorro is a 128-bit lightweight block cipher supporting 128-bit keys, presented at CHES 201...
International audienceDesign of SP networks in which the non-linear layer is applied to only a part ...
International audienceDesign of SP networks in which the non-linear layer is applied to only a part ...
Abstract. Design of SP networks in which the non-linear layer is applied to only a part of the state...
The design and analysis of lightweight block ciphers has been a very active research area over the l...
Abstract. The design and analysis of lightweight block ciphers has been a very active research area ...
International audienceThe design and analysis of lightweight block ciphers has been a very active re...
Differential and linear cryptanalysis are two of the most powerful techniques to analyze symmetric-k...
Abstract This work concentrates on differential-linear distinguishing attacks on the prominent ARX-b...
Abstract. The mere number of various apparently different statistical attacks on block ciphers has r...
Impossible differential attacks are among the most powerful forms of cryptanalysis against block cip...
Abstract. Impossible differential attacks are among the most powerful forms of cryptanalysis against...
In this paper, we present an improved differential-linear cryptanalysis of the ChaCha stream cipher....
International audiencetextit{Piccolo} is a new lightweight block cipher proposed at CHES 2011~\cite{...