incentives for lowmc cryptanalysis in the low data
play

Incentives for LowMC-Cryptanalysis in the Low-Data Scenario - PowerPoint PPT Presentation

Dec 12, 2022 •408 likes •503 views

S C I E N C E P A S S I O N T E C H N O L O G Y Incentives for LowMC-Cryptanalysis in the Low-Data Scenario Christian Rechberger, Eurocrypt 2020 Rump Session 12.05.2020 > https://lowmcchallenge.github.io/ LowMC First cipher design

  1. S C I E N C E P A S S I O N T E C H N O L O G Y Incentives for LowMC-Cryptanalysis in the Low-Data Scenario Christian Rechberger, Eurocrypt 2020 Rump Session 12.05.2020 > https://lowmcchallenge.github.io/

  2. LowMC First cipher design aiming directly a minimizing AND gates, Eurocrypt 2015 VERY flexible instantiations possible, lots of cryptanalysis[ARS+16; DEM15; DKP+19; DLMW15; RST18] ¨ ¨ ¨ ¨ ¨ ¨ S S S Affine Layer Key Addition A very interesting use-case: Picnic Signature scheme 1 / 8

  3. Low-Data (single PT/CT pair) Scenario LowMC in the context of Picnic [CDG+19] Post-quantum signature scheme Round-2 submission of NIST PQC Attacker only knows a single (plaintext, ciphertext) pair Nine interesting instantiations LowMC with block size N in t 128 , 192 , 256 u Number of S-boxes s in t 1 , 10 , full u Key size is the same as block size 2 / 8

  4. Existing Analysis of LowMC with single PT/CT pair Survey paper [GKRS20] Attack goal is full key recovery Classical differential and linear attacks not possible Attacks considered so far: Various Gröbner bases approaches MiTM, guess-and-determine attacks [DF16] Coding theory [Zaj17] 3 / 8

  5. The LowMC Cryptanalysis Challenge: First Round until August 2020 Sponsoring: 50k USD by Microsof, more sponsors upcoming Partial nonlinear layers Submitters of the fastest attack on floor(n/s)*0.8 rounds win EUR 2k. Submitters of the fastest attack on floor(n/s)*1.0 rounds win EUR 3k. Submitters of the fastest attack on floor(n/s)*1.2 rounds win EUR 4k. Full nonlinear layers Submitters of the fastest attack on 2 rounds win EUR 2k. Submitters of the fastest attack on 3 rounds win EUR 3k. Submitters of the fastest attack on 4 rounds win EUR 4k. Bonus prize for interesting property or technique: 4k. Total: 22k in first round 4 / 8

  6. Tentative schedule and rules In case of similar results, earlier submission counts! Verifiability is important Submissions are expected to be public Deadline of first round: August 10, i.e. one week before Crypto 2020. Overall duration: around 2 years, money that is not spent remains in the pot and is part of the following rounds, next one tentatively ending end of 2020. More infos: https://lowmcchallenge.github.io/ and lowmc-challenge@iaik.tugraz.at 5 / 8

  7. References I [ARS+16] Martin Albrecht, Christian Rechberger, Thomas Schneider, Tyge Tiessen, and Michael Zohner. Ciphers for MPC and FHE . Cryptology ePrint Archive, Report 2016/687. https://eprint.iacr.org/2016/687 . 2016. [CDG+19] Melissa Chase, David Derler, Steven Goldfeder, Jonathan Katz, Valdimir Kolesnikov, Claudio Orlandi, Sebastian Ramacher, Christian Rechberger, Daniel Slamanig, Xiao Wang, and Greg Zaverucha. The Picnic Signature Scheme Design Document (version 2) . 2019. URL : https: //github.com/microsoft/Picnic/blob/master/spec/design-v2.0.pdf . [DEM15] Christoph Dobraunig, Maria Eichlseder, and Florian Mendel. Higher-Order Cryptanalysis of LowMC . ICISC 2015. Vol. 9558. 2015, pp. 87–101. URL : https://doi.org/10.1007/978-3-319-30840-1%5C_6 . [DF16] Patrick Derbez and Pierre-Alain Fouque. Automatic Search of Meet-in-the-Middle and Impossible Differential Attacks . CRYPTO (2). Vol. 9815. Lecture Notes in Computer Science. Springer, 2016, pp. 157–184. 6 / 8

  8. References II [DKP+19] Itai Dinur, Daniel Kales, Angela Promitzer, Sebastian Ramacher, and Christian Rechberger. Linear Equivalence of Block Ciphers with Partial Non-Linear Layers: Application to LowMC . EUROCRYPT 2019. Vol. 11476. LNCS. 2019, pp. 343–372. URL : https://doi.org/10.1007/978-3-030-17653-2%5C_12 . [DLMW15] Itai Dinur, Yunwen Liu, Willi Meier, and Qingju Wang. Optimized Interpolation Attacks on LowMC . ASIACRYPT 2015. Vol. 9453. LNCS. 2015, pp. 535–560. URL : https://doi.org/10.1007/978-3-662-48800-3%5C_22 . [GKRS20] Lorenzo Grassi, Daniel Kales, Christian Rechberger, and Markus Schofnegger. Survey of Key-Recovery Attacks on LowMC in a Single Plaintext/Ciphertext Scenario . https://lowmcchallenge.github.io/ . 2020. 7 / 8

  9. References III [RST18] Christian Rechberger, Hadi Soleimany, and Tyge Tiessen. Cryptanalysis of Low-Data Instances of Full LowMCv2 . IACR Trans. Symmetric Cryptol. 2018.3 (2018), pp. 163–181. URL : https://doi.org/10.13154/tosc.v2018.i3.163-181 . [Zaj17] Pavol Zajac. Upper bounds on the complexity of algebraic cryptanalysis of ciphers with a low multiplicative complexity . Des. Codes Cryptogr. 82.1-2 (2017), pp. 43–56. DOI : 10.1007/s10623-016-0256-x . URL : https://doi.org/10.1007/s10623-016-0256-x . 8 / 8

Recommend

Objectives Models for Cryptanalysis Cryptanalysis of Monoalphabetic Ciphers

Objectives Models for Cryptanalysis Cryptanalysis of Monoalphabetic Ciphers

Cryptanalysis of Classical Ciphers Debdeep Mukhopadhyay Assistant Professor Department of Computer Science and Engineering Indian Institute of Technology Kharagpur INDIA -721302 Objectives Models for Cryptanalysis Cryptanalysis of

657 views • 20 slides
Block Cipher Cryptanalysis II: Block Cipher Cryptanalysis II: Linear Cryptanalysis yp y Andrey

Block Cipher Cryptanalysis II: Block Cipher Cryptanalysis II: Linear Cryptanalysis yp y Andrey

Block Cipher Cryptanalysis II: Block Cipher Cryptanalysis II: Linear Cryptanalysis yp y Andrey Bogdanov Andrey Bogdanov K.U.Leuven, ESAT/COSIC Outline Outline Distribution of Correlation Data Complexity Linear Hulls Zero

659 views • 30 slides
Incentives to relay 1) Incentives to relay traffic 2) Incentives to do it well 3)

Incentives to relay 1) Incentives to relay traffic 2) Incentives to do it well 3)

Incentives to relay 1) Incentives to relay traffic 2) Incentives to do it well 3) Incentives to allow exits. Nave tit-for-tat probably not so smart. But maybe something like it? Run two servers and wait Over time,

303 views • 13 slides
Implementing Grover Oracles for Quantum Key Search on AES and LowMC Samuel Jaques 1 , Michael

Implementing Grover Oracles for Quantum Key Search on AES and LowMC Samuel Jaques 1 , Michael

Implementing Grover Oracles for Quantum Key Search on AES and LowMC Samuel Jaques 1 , Michael Naehrig 2 , Martin Roetteler 3 , Fernando Virdia 4 1 Department of Materials, University of Oxford, UK 2 Microsoft Research, Redmond, WA, USA 3 Microsoft

696 views • 26 slides
Efficient FPGA Implementations of LowMC and Picnic Roman Walch PhD Student IAIK / Know-Center

Efficient FPGA Implementations of LowMC and Picnic Roman Walch PhD Student IAIK / Know-Center

SESSION ID: SESSION ID: CRYP-R02 Efficient FPGA Implementations of LowMC and Picnic Roman Walch PhD Student IAIK / Know-Center GmbH, Graz University of Technology @rw0x0 Joint work with: Daniel Kales, Sebastian Ramacher, Christian

499 views • 26 slides
Incentives Research in HE Those that found incentives effective Survey Incentives and Institutional

Incentives Research in HE Those that found incentives effective Survey Incentives and Institutional

5/29/2014 Incentives Research in HE Those that found incentives effective Survey Incentives and Institutional Response Rates: Parsons and Maniere (2013) An Exploratory Analysis Significant increase in response rate for the experimental group

460 views • 9 slides
Statistics in Cryptanalysis Subhabrata Samajder Indian Statistical Institute, Kolkata 24 th May,

Statistics in Cryptanalysis Subhabrata Samajder Indian Statistical Institute, Kolkata 24 th May,

Statistics in Cryptanalysis Subhabrata Samajder Indian Statistical Institute, Kolkata 24 th May, 2017 0/35 Cryptanalysis of Affine Cipher Outline Cryptanalysis of Affine Cipher 1 Hypothesis Testing 2 Linear Cryptanalysis 3 0/35

1.52k views • 110 slides
Data and Incentives Annie Liang 1 and Erik Madsen 2 1 Department of Economics, University of

Data and Incentives Annie Liang 1 and Erik Madsen 2 1 Department of Economics, University of

Data and Incentives Annie Liang 1 and Erik Madsen 2 1 Department of Economics, University of Pennsylvania 2 Department of Economics, New York University EC 2020 Information and Incentives session 9-11 am ET on July 14, 2020 Regulating data usage

361 views • 4 slides
Differential and Linear Cryptanalysis Lars R. Knudsen June 2014 L.R. Knudsen Differential and

Differential and Linear Cryptanalysis Lars R. Knudsen June 2014 L.R. Knudsen Differential and

Differential cryptanalysis Linear cryptanalysis Differential and Linear Cryptanalysis Lars R. Knudsen June 2014 L.R. Knudsen Differential and Linear Cryptanalysis Differential cryptanalysis Linear cryptanalysis Iterated block ciphers (DES,

910 views • 53 slides
Incentives Abercrombie & Kent Incentives Abercrombie & Kent Incentives is a division

Incentives Abercrombie & Kent Incentives Abercrombie & Kent Incentives is a division

A&K Russia Incentives Abercrombie & Kent Incentives Abercrombie & Kent Incentives is a division of A&K Russia that operates as a full Destination Management Company in the most important destinations in Russia. Since

259 views • 21 slides
The Super-Sbox Cryptanalysis Improved Attacks for AES-like Permutations Henri Gilbert and Thomas

The Super-Sbox Cryptanalysis Improved Attacks for AES-like Permutations Henri Gilbert and Thomas

Introduction Previous cryptanalysis techniques The Super-Sbox cryptanalysis Results The Super-Sbox Cryptanalysis Improved Attacks for AES-like Permutations Henri Gilbert and Thomas Peyrin Orange Labs and Ingenico FSE 2010 - Seoul - Korea

1.38k views • 19 slides
Results of the 2014 Kentucky Incentives for Prevention (KIP) Survey for Boyle County Data

Results of the 2014 Kentucky Incentives for Prevention (KIP) Survey for Boyle County Data

Results of the 2014 Kentucky Incentives for Prevention (KIP) Survey for Boyle County Data presented here are the combined results of Boyle County and Danville Independents participation in the 2014 Kentucky Incentives for Data Source

666 views • 51 slides
Differential Cryptanalysis - quite similar to linear cryptanalysis - exploits the relationship

Differential Cryptanalysis - quite similar to linear cryptanalysis - exploits the relationship

Differential Cryptanalysis - quite similar to linear cryptanalysis - exploits the relationship between the difference of two inputs and the difference of the corresponding two outputs. - the difference M Z of two strings of bits Z and Z

556 views • 10 slides
Rotational Cryptanalysis in the Presence of Constants Tomer Ashur Yunwen Liu ESAT/COSIC, KU

Rotational Cryptanalysis in the Presence of Constants Tomer Ashur Yunwen Liu ESAT/COSIC, KU

Rotational Cryptanalysis in the Presence of Constants Tomer Ashur Yunwen Liu ESAT/COSIC, KU Leuven, and imec, Belgium FSE, March 2017 1 Table of Contents ARX & Rotational Cryptanalysis Rotational cryptanalysis with constants Experiment

1.12k views • 72 slides
Differential Cryptanalysis The first method which reduced the complexity of attacking DES below

Differential Cryptanalysis The first method which reduced the complexity of attacking DES below

Differential Cryptanalysis The first method which reduced the complexity of attacking DES below (half of) exhaustive search. Differential Cryptanalysis Note : In all the following discussion we ignore the existence of the initial and the final

330 views • 8 slides
Cryptanalysis of LAC G. Leurent (Inria) Cryptanalysis of LAC DIAC 2014 1 / 9 . . . . . . . .

Cryptanalysis of LAC G. Leurent (Inria) Cryptanalysis of LAC DIAC 2014 1 / 9 . . . . . . . .

Description of LAC Differentials and Characteristics Forgery attack Cryptanalysis of LAC G. Leurent (Inria) Cryptanalysis of LAC DIAC 2014 1 / 9 . . . . . . . . Gatan Leurent Inria, France DIAC 2014 2 / 9 Description of LAC DIAC

1.04k views • 36 slides
More than preservation: Creating motivational designs and tailored incentives in research data

More than preservation: Creating motivational designs and tailored incentives in research data

More than preservation: Creating motivational designs and tailored incentives in research data repositories Sebastian S. Feger, Snje Dallmeier-Tiessen, Pamfilos Fokianos, Dinos Kousidis, Artemis Lavasa, Rokas Maciulaitis, Jan Okraska, Diego

612 views • 32 slides
Tax Incentives in Latin America 05/11/2012 CHILE a) Tax Stability Agreements b) Free Trade

Tax Incentives in Latin America 05/11/2012 CHILE a) Tax Stability Agreements b) Free Trade

Tax Incentives in Latin America 05/11/2012 CHILE a) Tax Stability Agreements b) Free Trade Zones b) Free Trade Zones c) Regional Incentives d) Industry Specific Incentives e) Export Incentives f) R&D Investments Incentives g) Chilean

664 views • 13 slides
Cryptanalysis of Low-Data Instances of Full LowMCv2 Christian Rechberger 1 Hadi Soleimany 2 Tyge

Cryptanalysis of Low-Data Instances of Full LowMCv2 Christian Rechberger 1 Hadi Soleimany 2 Tyge

Cryptanalysis of Low-Data Instances of Full LowMCv2 Christian Rechberger 1 Hadi Soleimany 2 Tyge Tiessen 3 1 Graz University of Technology, Austria 2 Shahid Beheshti University, Iran 3 Technical University of Denmark, Denmark FSE 2019, Paris,

853 views • 62 slides
Automatic Cryptanalysis of Block Ciphers with CP A case study: related key differential

Automatic Cryptanalysis of Block Ciphers with CP A case study: related key differential

Automatic Cryptanalysis of Block Ciphers with CP A case study: related key differential cryptanalysis David Gerault LIMOS, University Clermont Auvergne This presentation is inspired by 4 papers written with Pascal Lafourcade, Marine Minier,

455 views • 26 slides
Sustaining Collaborative Care with Incentives and Reporting Dorian Gittleman, MPH How to

Sustaining Collaborative Care with Incentives and Reporting Dorian Gittleman, MPH How to

Sustaining Collaborative Care with Incentives and Reporting Dorian Gittleman, MPH How to sustain Collaborative Care Payment Incentives Consolidation of Reporting and CQI Activities Effective Data Use Staff Training and

556 views • 34 slides
Employment incentives for sole parents: Labour market effects of changes to financial incentives

Employment incentives for sole parents: Labour market effects of changes to financial incentives

Employment incentives for sole parents: Labour market effects of changes to financial incentives and support Dr Jacinta Dalgety 1 , Dr Richard Dorsett 2 Philip Spier 1 , Steven Johnston 1 1 Ministry of Social Development 2 National Institute of

460 views • 23 slides
Update on Incentives & Benefits of Going green Ir. G. Lalchand 16 November 2009 GBI

Update on Incentives & Benefits of Going green Ir. G. Lalchand 16 November 2009 GBI

Update on Incentives & Benefits of Going green Ir. G. Lalchand 16 November 2009 GBI Incentives 16 November 2009 GBI Incentives Incentives Applicable to: Qualifying components of passive design Physical envelope components such as:

243 views • 6 slides
Probabilistic Slide Cryptanalysis and Its Applications to LED-64 and Zorro Hadi Soleimany

Probabilistic Slide Cryptanalysis and Its Applications to LED-64 and Zorro Hadi Soleimany

Probabilistic Slide Cryptanalysis and Its Applications to LED-64 and Zorro Hadi Soleimany Department of Information and Computer Science, Aalto University School of Science, Finland FSE 2014 1 / 21 Outline Introduction Slide Cryptanalysis

712 views • 49 slides

More recommend