Known-key attack on SM4 block cipher

Hyung Chul Kang; Deukjo Hong; Jaechul Sung; Seokhie Hong

doi:10.1587/transfun.E100.A.2985

Known-key attack on SM4 block cipher

Hyung Chul Kang, Deukjo Hong, Jaechul Sung, Seokhie Hong

Department of Mathematics

Research output: Contribution to journal › Article › peer-review

3 Scopus citations

Abstract

We present thefirst known-key attackon SM4, which is the Chinese standard block cipher made for the wireless LAN WAPI. We make a known-key distinguisher using rebound techniques with the time complexity of 2^12.75. Then, with the distinguisher, we provide near-collision attacks on MMO and MP hash modes of SM4. Precisely, we find a 104-bit near-collision for 13 rounds of SM4 with the time complexity of 2^13.30 and a 32-bit near-collision for 17 rounds of SM4 with the time complexity of 2^12.91. They are much more efficient than generic attacks for the case of random permutation.

Original language	English
Pages (from-to)	2985-2990
Number of pages	6
Journal	IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Volume	E100A
Issue number	12
DOIs	https://doi.org/10.1587/transfun.E100.A.2985
State	Published - Dec 2017

Keywords

Collision attack
Known-key distinguisher
SM4 block cipher

Access to Document

10.1587/transfun.E100.A.2985

Cite this

@article{ad716ffe54034036a896fdee9b9f1f02,

title = "Known-key attack on SM4 block cipher",

abstract = "We present thefirst known-key attackon SM4, which is the Chinese standard block cipher made for the wireless LAN WAPI. We make a known-key distinguisher using rebound techniques with the time complexity of 212.75. Then, with the distinguisher, we provide near-collision attacks on MMO and MP hash modes of SM4. Precisely, we find a 104-bit near-collision for 13 rounds of SM4 with the time complexity of 213.30 and a 32-bit near-collision for 17 rounds of SM4 with the time complexity of 212.91. They are much more efficient than generic attacks for the case of random permutation.",

keywords = "Collision attack, Known-key distinguisher, SM4 block cipher",

author = "Kang, \{Hyung Chul\} and Deukjo Hong and Jaechul Sung and Seokhie Hong",

note = "Publisher Copyright: Copyright {\textcopyright} 2017 The Institute of Electronics, Information and Communication Engineers.",

year = "2017",

month = dec,

doi = "10.1587/transfun.E100.A.2985",

language = "English",

volume = "E100A",

pages = "2985--2990",

journal = "IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences",

issn = "0916-8508",

publisher = "Maruzen Co., Ltd/Maruzen Kabushikikaisha",

number = "12",

}

TY - JOUR

T1 - Known-key attack on SM4 block cipher

AU - Kang, Hyung Chul

AU - Hong, Deukjo

AU - Sung, Jaechul

AU - Hong, Seokhie

PY - 2017/12

Y1 - 2017/12

N2 - We present thefirst known-key attackon SM4, which is the Chinese standard block cipher made for the wireless LAN WAPI. We make a known-key distinguisher using rebound techniques with the time complexity of 212.75. Then, with the distinguisher, we provide near-collision attacks on MMO and MP hash modes of SM4. Precisely, we find a 104-bit near-collision for 13 rounds of SM4 with the time complexity of 213.30 and a 32-bit near-collision for 17 rounds of SM4 with the time complexity of 212.91. They are much more efficient than generic attacks for the case of random permutation.

AB - We present thefirst known-key attackon SM4, which is the Chinese standard block cipher made for the wireless LAN WAPI. We make a known-key distinguisher using rebound techniques with the time complexity of 212.75. Then, with the distinguisher, we provide near-collision attacks on MMO and MP hash modes of SM4. Precisely, we find a 104-bit near-collision for 13 rounds of SM4 with the time complexity of 213.30 and a 32-bit near-collision for 17 rounds of SM4 with the time complexity of 212.91. They are much more efficient than generic attacks for the case of random permutation.

KW - Collision attack

KW - Known-key distinguisher

KW - SM4 block cipher

UR - https://www.scopus.com/pages/publications/85038212578

U2 - 10.1587/transfun.E100.A.2985

DO - 10.1587/transfun.E100.A.2985

M3 - Article

AN - SCOPUS:85038212578

SN - 0916-8508

VL - E100A

SP - 2985

EP - 2990

JO - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

JF - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

IS - 12

ER -

Known-key attack on SM4 block cipher

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this