eprint.iacr.org will be offline for approximately an hour for routine maintenance at 11pm UTC on Tuesday, April 16. We lost some data between April 12 and April 14, and some authors have been notified that they need to resubmit their papers.

Paper 2016/1101

MILP-Aided Bit-Based Division Property for ARX-Based Block Cipher

Ling Sun, Wei Wang, Ru Liu, and Meiqin Wang

Abstract

The huge time and memory complexities of utilizing bit-based division property, which was first presented by Todo and Morri at FSE 2016, bothered cryptographers for quite some time and it had been solved by Xiang \textit{et al.} at ASIACRYPT 2016. They applied MILP method to search integral distinguisher based on division property, and used it to analyze six lightweight block ciphers. Later on, Sun \textit{et al.} handled the feasibility of MILP-aided bit-based division property for primitives with non-bit-permutation linear layers. Although MILP-aided bit-based division property has gave many perfect results since its appearance, there still are many left problems when we want to develop its further applications. In this paper, we focus on the feasibility of MILP-aided bit-based division property for ARX-based primitive. More specifically, we consider the construction of MILP models for some components of ARX-based structure. Firstly, the \texttt{Modulo} model is proposed by using its iterated expression and introducing some auxiliary variables. Then, to propagate the operations of \texttt{AND} and \texttt{OR} with a constant (or a subkey), we prove that the known-region deduced by the input division property is always included in the known-region derived from the output division property, which allows us to ignore these operations. Furthermore, with its help, we also handle the \texttt{Modulo} operation with a constant (or a subkey). As a result, these new models are exploited to search integral distinguishers for some ARX-based block ciphers. For HIGHT and LEA, the lengths of the distinguishers both are improved by one round. Some 15-round integral distinguishers for TEA/XTEA are presented. Comparing with the existing one transformed by utilizing the equivalence between zero-correlation and integral cryptanalysis, our newly obtained distinguishers either reduces the data requirement or increases the number of zero-sum bits. Moreover, the bit-based division properties for KATAN and KTANTAN families of block ciphers are also provided.

Metadata
Available format(s)
PDF
Publication info
Preprint. MINOR revision.
Keywords
MILP-aided bit-based division propertyHIGHTLEATEAXTEAKATANKTANTAN
Contact author(s)
mqwang @ sdu edu cn
History
2016-11-23: received
Short URL
https://ia.cr/2016/1101
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2016/1101,
      author = {Ling Sun and Wei Wang and Ru Liu and Meiqin Wang},
      title = {MILP-Aided Bit-Based Division Property for ARX-Based Block Cipher},
      howpublished = {Cryptology ePrint Archive, Paper 2016/1101},
      year = {2016},
      note = {\url{https://eprint.iacr.org/2016/1101}},
      url = {https://eprint.iacr.org/2016/1101}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.