A Single-Key Attack on the Full GOST Block Cipher

被引:17
作者
Isobe, Takanori [1 ]
机构
[1] Sony Corp, Minato Ku, Tokyo 1080075, Japan
关键词
Block cipher; GOST; Single-key attack; Reflection attack; Meet-in-the-middle attack; Equivalent keys; THE-MIDDLE ATTACKS; CRYPTANALYSIS;
D O I
10.1007/s00145-012-9118-5
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
The GOST block cipher is the Russian encryption standard published in 1989. In spite of considerable cryptanalytic efforts over the past 20 years, a key recovery attack on the full GOST block cipher without any key conditions (e.g., weak keys and related keys) has not been published yet. In this paper, we show the first single-key attack, which works for all key classes, on the full GOST block cipher. To begin, we develop a new attack framework called Reflection-Meet-in-the-Middle Attack. This approach combines techniques of the reflection attack and the meet-in-the-middle (MITM) attack. Then we apply it to the GOST block cipher employing bijective S-boxes. In order to construct the full-round attack, we use additional novel techniques which are the effective MITM techniques using equivalent keys on a small number of rounds. As a result, a key can be recovered with a time complexity of 2(225) encryptions and 2(32) known plaintexts. Moreover, we show that our attack is applicable to the full GOST block cipher using any S-boxes, including non-bijective S-boxes.
引用
收藏
页码:172 / 189
页数:18
相关论文
共 35 条
  • [1] [Anonymous], 2011, LECT NOTES COMPUTER
  • [2] [Anonymous], 1994, Fast Software Encryption, DOI DOI 10.1007/3-540-58108-1_24
  • [3] [Anonymous], 1995, APPL CRYPTOGRAPHY PR
  • [4] [Anonymous], CHOSEN KEY ATT UNPUB
  • [5] Aoki K, 2009, LECT NOTES COMPUT SC, V5381, P103, DOI 10.1007/978-3-642-04159-4_7
  • [6] Biham E, 2007, LECT NOTES COMPUT SC, V4593, P153
  • [7] Biryukov A, 1999, LECT NOTES COMPUT SC, V1636, P245
  • [8] Biryukov A, 2000, LECT NOTES COMPUT SC, V1807, P589
  • [9] Biryukov A., 2007, LECT NOTES COMPUTER, V4593
  • [10] Bogdanov A, 2007, LECT NOTES COMPUT SC, V4727, P450