Paper 2014/453

Block Ciphers - Focus On The Linear Layer (feat. PRIDE): Full Version

Martin R. Albrecht, Benedikt Driessen, Elif Bilge Kavun, Gregor Leander, Christof Paar, and Tolga Yalçın

Abstract

The linear layer is a core component in any substitution-permutation network block cipher. Its design significantly influences both the security and the efficiency of the resulting block cipher. Surprisingly, not many general constructions are known that allow to choose trade-offs between security and efficiency. Especially, when compared to Sboxes, it seems that the linear layer is crucially understudied. In this paper, we propose a general methodology to construct good, sometimes optimal, linear layers allowing for a large variety of trade-offs. We give several instances of our construction and on top underline its value by presenting a new block cipher. PRIDE is optimized for 8-bit micro-controllers and significantly outperforms all academic solutions both in terms of code size and cycle count.

Note: Full version of CRYPTO 2014 paper

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Published elsewhere. Major revision. The proceedings of CRYPTO 2014
Keywords
software-oriented lightweight block cipherefficient linear layer
Contact author(s)
elif kavun @ rub de
History
2014-06-16: revised
2014-06-15: received
See all versions
Short URL
https://ia.cr/2014/453
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2014/453,
      author = {Martin R.  Albrecht and Benedikt Driessen and Elif Bilge Kavun and Gregor Leander and Christof Paar and Tolga Yalçın},
      title = {Block Ciphers - Focus On The Linear Layer (feat. PRIDE): Full Version},
      howpublished = {Cryptology ePrint Archive, Paper 2014/453},
      year = {2014},
      note = {\url{https://eprint.iacr.org/2014/453}},
      url = {https://eprint.iacr.org/2014/453}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.