【 摘 要 】

SIMON and SPECK families of block ciphers are well-known lightweight ciphers designed by the NSA. In this note, based on the previous investigations on SIMON, a closed formula for the squared correlations and differential probabilities of the mapping ϕ( x )= x ⊙S 1 ( x )on F 2 n is given. From the aspects of linear and differential cryptanalysis, this mapping is equivalent to the core quadratic mapping of SIMON via rearrangement of coordinates and EA -equivalence. Based on the proposed explicit formula, a full description of DDT and LAT ofϕis provided. In the case of SPECK, as the only nonlinear operation in this family of ciphers is addition mod 2 n, after reformulating the formula for linear and differential probabilities of addition mod 2 n, straightforward algorithms for finding the output masks with maximum squared correlation, given the input masks, as well as the output differences with maximum differential probability, given the input differences, are presented. By the aid of the tools given in this paper, the process of the search for linear and differential characteristics of SIMON and SPECK families of block ciphers could be sped up, and the complexity of linear and differential attacks against these ciphers could be reduced.

【 授权许可】

CC BY   

【 预 览 】

附件列表

Files	Size	Format	View
RO201901229676545ZK.pdf	359KB	PDF	download