caa a22 4500 606148817 CHVBK 20210128100531.0 cr unu---uuuuu 210128e20150701xx s 000 0 eng 10.1007/s00145-013-9175-4 doi (NATIONALLICENCE)springer-10.1007/s00145-013-9175-4 Reflection Cryptanalysis of PRINCE-Like Ciphers [Elektronische Daten] [Hadi Soleimany, Céline Blondeau, Xiaoli Yu, Wenling Wu, Kaisa Nyberg, Huiling Zhang, Lei Zhang, Yanfeng Wang] PRINCE is a low-latency block cipher presented at ASIACRYPT 2012. The cipher was designed with a property called α-reflection which reduces the definition of decryption with a given key to encryption with a different but related key determined by α. In the design document, it was shown that PRINCE is secure against known attacks independently of the value of α, and the design criteria for α remained open. In this paper, we introduce new distinguishers on PRINCE-like ciphers by constructing probable or impossible relations from the cipher data located at layers that are symmetric around the middle of the cipher. We show that the probabilities of such relations, called reflection characteristics in this paper, depend crucially on the choice of the reflection parameter α. Several classes of α are investigated. As a result we show that there exist values of α which, if used in the otherwise original PRINCE, would allow a key-recovery attack on the full 12-round cipher with the data complexity of 257.98 known plaintexts and the time complexity of 272.39 encryptions. While this attack is not better than the generic attack on the complete cipher, where the core cipher is protected by the whitening key, the same reflection distinguisher, when applied on the core cipher without the whitening key, yields a key-recovery attack with time complexity less than exhaustive key search and data complexity of 256.21 known plaintexts. As a result of the new cryptanalysis method presented in this paper, new design criteria concerning the selection of the value of α for PRINCE-like ciphers are obtained. International Association for Cryptologic Research, 2013 Block cipher nationallicence α -Reflection property nationallicence PRINCE nationallicence Statistical attack nationallicence Reflection attack nationallicence Soleimany Hadi Department of Information and Computer Science, School of Science, Aalto University, Espoo, Finland aut Blondeau Céline Department of Information and Computer Science, School of Science, Aalto University, Espoo, Finland aut Yu Xiaoli TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut Wu Wenling TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut Nyberg Kaisa Department of Information and Computer Science, School of Science, Aalto University, Espoo, Finland aut Zhang Huiling TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut Zhang Lei TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut Wang Yanfeng TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut Journal of Cryptology Springer US; http://www.springer-ny.com 28/3(2015-07-01), 718-744 0933-2790 28:3<718 2015 28 145 https://doi.org/10.1007/s00145-013-9175-4 text/html Onlinezugriff via DOI BK010053 XK010053 XK010000 Metadata rights reserved Springer special CC-BY-NC licence nationallicence 1 research-article jats NATIONALLICENCE NATIONALLICENCE NL-springer NATIONALLICENCE 856 40 https://doi.org/10.1007/s00145-013-9175-4 text/html Onlinezugriff via DOI NATIONALLICENCE 700 1- Soleimany Hadi Department of Information and Computer Science, School of Science, Aalto University, Espoo, Finland aut NATIONALLICENCE 700 1- Blondeau Céline Department of Information and Computer Science, School of Science, Aalto University, Espoo, Finland aut NATIONALLICENCE 700 1- Yu Xiaoli TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut NATIONALLICENCE 700 1- Wu Wenling TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut NATIONALLICENCE 700 1- Nyberg Kaisa Department of Information and Computer Science, School of Science, Aalto University, Espoo, Finland aut NATIONALLICENCE 700 1- Zhang Huiling TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut NATIONALLICENCE 700 1- Zhang Lei TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut NATIONALLICENCE 700 1- Wang Yanfeng TCA, Institute of Software, Chinese Academy of Sciences, Beijing, P.R. China aut NATIONALLICENCE 773 0- Journal of Cryptology Springer US; http://www.springer-ny.com 28/3(2015-07-01), 718-744 0933-2790 28:3<718 2015 28 145