对认证加密算法Pyjamask的伪造攻击

计算机工程与科学 ›› 2022, Vol. 44 ›› Issue (12): 2140-2145.

• 计算机网络与信息安全 • 上一篇下一篇

对认证加密算法Pyjamask的伪造攻击

贺水喻1，魏悦川1,2，潘峰1,2，畅利鹏1

（1.中国人民武装警察部队工程大学密码工程学院，陕西西安 710086;
2.中国人民武装警察部队网络与信息安全重点实验室，陕西西安 710086）

收稿日期:2021-12-10 修回日期:2022-04-11 接受日期:2022-12-25 出版日期:2022-12-25 发布日期:2023-01-04
基金资助:
陕西省基础基金面上项目(2021JM-254)

Forgery attack on the authenticated encryption algorithm Pyjamask

HE Shui-yu1,WEI Yue-chuan1,2,PAN Feng1,2,CHANG Li-peng1

(1.School of Cryptography Engineering，Engineering University of PAP，Xi’an 710086;
2.Key Laboratory of Network and Information Security of PAP，Xi’an 710086，China)

Received:2021-12-10 Revised:2022-04-11 Accepted:2022-12-25 Online:2022-12-25 Published:2023-01-04

摘要/Abstract

摘要： Pyjamask算法是入围LWC竞赛第2轮的竞选算法之一。该算法结构简单、轻量高效，具有良好的非线性部件并行运算能力，引起了大量密码学者的高度关注。目前该算法的安全性问题研究相对较少，迫切需要新一轮的安全性评估。基于Pyjamask的结构与参数的特点，提出了一种对明文进行伪造的方法，可以准确伪造出认证标签。理论分析表明：选择1组明文时成功概率为1，数据复杂度和时间复杂度可忽略不计；选择s+1组明文时成功概率也为1，但对所选数据要求较高。

关键词: Pyjamask算法, 伪造攻击, 认证加密

Abstract: Pyjamask algorithm is one of the campaign algorithms shortlisted in the second round of LWC competition. This algorithm has the advantages of simple structure, light weight and high efficiency, and good parallel computing ability of nonlinear components, which has attracted the attention of many cryptographers. At present, there are relatively few researches on the security of this algorithm, and a new round of security evaluation is urgently needed. Based on the characteristics of Pyjamasks structure and adjustment parameters, this paper proposes a method for forging plaintexts, which can accurately forge authentication tags. Theoretical analysis shows that the success probability is 1 with negligible data complexity and time complexity when selecting a set of plaintexts, and the success probability is also 1 with high selected data requirements when selecting s+1 sets of plaintexts.

Key words: Pyjamask algorithm, forgery attack, authenticated encryption

贺水喻, 魏悦川, 潘峰, 畅利鹏. 对认证加密算法Pyjamask的伪造攻击[J]. 计算机工程与科学, 2022, 44(12): 2140-2145.

HE Shui-yu, WEI Yue-chuan, PAN Feng, CHANG Li-peng. Forgery attack on the authenticated encryption algorithm Pyjamask[J]. Computer Engineering & Science, 2022, 44(12): 2140-2145.

参考文献［13］

［1］	Lo A,Grotevant H,Mcroy R.Privacy and confidentiality in adoption research:Perspectives from the Minnesota/Texas adoption research project［EB/OL］.［2021-10-17］.https://scholarworks.umass.edu/cgi/viewcontent.cgi?article=1228&context=rudd_conf.
［2］	Sumra I A,Hasbullah H B,Ab Manan J.Attacks on security goals (confidentiality,integrity,availability) in VANET:A survey［M］∥Vehicular Ad-hoc Networks for Smart Cities. Singapore:Springer Singapore,2015:51-61.
［3］	Bellare M,Namprempre C.Authenticated encryption:Relations among notions and analysis of the generic composition paradigm［J］．Journal of Cryptology，2008，21(4):469-491.
［4］	National Institute of Standards and Technology (NIST):Lightweight cryptography standardization process (2019) ［EB/OL］.［2021-10-17］.https://csrc.nist.gov/projects/lightweight-cryptography.
［5］	Goudarzi D, Jean J, Klbl S,et al.Pyjamask:Block cipher and authenticated encryption with highly efficient masked implementation［J］.IACR Transactions on Symmetric Cryptology,2020,2020(S1):31-59.
［6］	Xu Ze-yu. Automated analysis of the grouped cryptographic algorithm Pyjamask［D］.Jinan:Shandong University,2020.（in Chinese）
［7］	Tian W Q, Hu B.Integral cryptanalysis on two block ciphers Pyjamask and uBlock ［J］.IET Information Security,2020,14 (5):572-579.
［8］	Liu Ya, Tang Wei-ming, Shen Zhi-yuan,et al.Impossible differential crytanalysis of lightweight block cipher Pyjamask［J］.Application Research of Computers,2021,38(11):3428-3432.（in Chinese）
［9］	Nandi M. Forging attacks on two authenticated encryption schemes COBRA and POET［C］∥Proc of International Conference on the Theory and Application of Cryptology and Information Security,2014:126-140.
［10］	CAESAR—competition for authenticated encryption:Security, applicability and robustness［EB/OL］.［2021-10-17］.http://competitions.cr.yp.to/caesar.html.
［11］	Leander G,Minaud B,Rnjom S.A generic approach to invariant subspace attacks:Cryptanalysis of Robin,iSCREAM and Zorro［C］∥Proc of International Conference on the Theo- ry & Applications of Cryptographic Techniques,2015:254-283.
［12］	Tian Yu-dan,Wei Yong-zhuang.New forgery attack on the authenticated cipher SCREAM and iSCREAM［J］.Chinese Journal of Network and Information Security,2016,2(1):60-64.（in Chinese）
［13］	Du Zhi-bo, Wu Zhen,Wang Min,et al.Improved chosen-plaintext power analysis attack against SM4 at the round-output［J］.Journal of Communications,2015,36(10):85-91.（in Chinese）
	附中文参考文献:
［6］	许泽雨.分组密码算法Pyjamask的自动化分析［D］.济南：山东大学,2020.
［8］	刘亚,唐伟明,沈致远,等.轻量级分组密码Pyjamask的不可能差分分析［J］.计算机应用研究,2021,38(11):3428-3432.
［12］	田玉丹,韦永壮.认证加密算法SCREAM及iSCREAM的新伪造攻击［J］.网络与信息安全学报,2016,2(1):60-64.
［13］	杜之波,吴震,王敏,等.针对SM4轮输出的改进型选择明文功耗分析攻击［J］.通信学报,2015,36(10):85-91.

对认证加密算法Pyjamask的伪造攻击

Forgery attack on the authenticated encryption algorithm Pyjamask

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献［13］

相关文章 1

编辑推荐

Metrics

本文评价

对认证加密算法Pyjamask的伪造攻击

Forgery attack on the authenticated encryption algorithm Pyjamask

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献 ［13］

相关文章 1

编辑推荐

Metrics

本文评价

参考文献［13］