A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application
Bit permutations are efficient linear functions often used for lightweight cipher designs. However, they have low diffusion effects, compared to word-oriented binary and maximum distance separable (MDS) matrices. Thus, the security of bit permutation-based ciphers is significantly affected by differ...
Guardado en:
| Autores principales: | , , , , , , , , , , |
|---|---|
| Formato: | article |
| Lenguaje: | EN |
| Publicado: |
IEEE
2021
|
| Materias: | |
| Acceso en línea: | https://doaj.org/article/556fde086ec64f14a96d5527e81c3642 |
| Etiquetas: |
Agregar Etiqueta
Sin Etiquetas, Sea el primero en etiquetar este registro!
|
| id |
oai:doaj.org-article:556fde086ec64f14a96d5527e81c3642 |
|---|---|
| record_format |
dspace |
| spelling |
oai:doaj.org-article:556fde086ec64f14a96d5527e81c36422021-11-18T00:08:46ZA New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application2169-353610.1109/ACCESS.2021.3126008https://doaj.org/article/556fde086ec64f14a96d5527e81c36422021-01-01T00:00:00Zhttps://ieeexplore.ieee.org/document/9605581/https://doaj.org/toc/2169-3536Bit permutations are efficient linear functions often used for lightweight cipher designs. However, they have low diffusion effects, compared to word-oriented binary and maximum distance separable (MDS) matrices. Thus, the security of bit permutation-based ciphers is significantly affected by differential and linear branch numbers (DBN and LBN) of nonlinear functions. In this paper, we introduce a widely applicable method for constructing S-boxes with high DBN and LBN. Our method exploits constructions of S-boxes from smaller S-boxes and it derives/proves the required conditions for smaller S-boxes so that the DBN and LBN of the constructed S-boxes are at least 3. These conditions enable us to significantly reduce the search space required to create such S-boxes. Using the unbalanced-<italic>Bridge</italic> and unbalanced-<italic>MISTY</italic> structures, we develop a variety of new lightweight S-boxes that provide not only both DBN and LBN of at least 3 but also efficient bitsliced implementations including at most 11 nonlinear bitwise operations. The new S-boxes are the first that exhibit these characteristics.Hangi KimYongjin JeonGiyoon KimJongsung KimBo-Yeon SimDong-Guk HanHwajeong SeoSeonggyeom KimSeokhie HongJaechul SungDeukjo HongIEEEarticleLightweight S-boxesdifferential and linear branch numbershigher-order maskingElectrical engineering. Electronics. Nuclear engineeringTK1-9971ENIEEE Access, Vol 9, Pp 150592-150607 (2021) |
| institution |
DOAJ |
| collection |
DOAJ |
| language |
EN |
| topic |
Lightweight S-boxes differential and linear branch numbers higher-order masking Electrical engineering. Electronics. Nuclear engineering TK1-9971 |
| spellingShingle |
Lightweight S-boxes differential and linear branch numbers higher-order masking Electrical engineering. Electronics. Nuclear engineering TK1-9971 Hangi Kim Yongjin Jeon Giyoon Kim Jongsung Kim Bo-Yeon Sim Dong-Guk Han Hwajeong Seo Seonggyeom Kim Seokhie Hong Jaechul Sung Deukjo Hong A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application |
| description |
Bit permutations are efficient linear functions often used for lightweight cipher designs. However, they have low diffusion effects, compared to word-oriented binary and maximum distance separable (MDS) matrices. Thus, the security of bit permutation-based ciphers is significantly affected by differential and linear branch numbers (DBN and LBN) of nonlinear functions. In this paper, we introduce a widely applicable method for constructing S-boxes with high DBN and LBN. Our method exploits constructions of S-boxes from smaller S-boxes and it derives/proves the required conditions for smaller S-boxes so that the DBN and LBN of the constructed S-boxes are at least 3. These conditions enable us to significantly reduce the search space required to create such S-boxes. Using the unbalanced-<italic>Bridge</italic> and unbalanced-<italic>MISTY</italic> structures, we develop a variety of new lightweight S-boxes that provide not only both DBN and LBN of at least 3 but also efficient bitsliced implementations including at most 11 nonlinear bitwise operations. The new S-boxes are the first that exhibit these characteristics. |
| format |
article |
| author |
Hangi Kim Yongjin Jeon Giyoon Kim Jongsung Kim Bo-Yeon Sim Dong-Guk Han Hwajeong Seo Seonggyeom Kim Seokhie Hong Jaechul Sung Deukjo Hong |
| author_facet |
Hangi Kim Yongjin Jeon Giyoon Kim Jongsung Kim Bo-Yeon Sim Dong-Guk Han Hwajeong Seo Seonggyeom Kim Seokhie Hong Jaechul Sung Deukjo Hong |
| author_sort |
Hangi Kim |
| title |
A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application |
| title_short |
A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application |
| title_full |
A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application |
| title_fullStr |
A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application |
| title_full_unstemmed |
A New Method for Designing Lightweight S-Boxes With High Differential and Linear Branch Numbers, and its Application |
| title_sort |
new method for designing lightweight s-boxes with high differential and linear branch numbers, and its application |
| publisher |
IEEE |
| publishDate |
2021 |
| url |
https://doaj.org/article/556fde086ec64f14a96d5527e81c3642 |
| work_keys_str_mv |
AT hangikim anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT yongjinjeon anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT giyoonkim anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT jongsungkim anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT boyeonsim anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT donggukhan anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT hwajeongseo anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT seonggyeomkim anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT seokhiehong anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT jaechulsung anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT deukjohong anewmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT hangikim newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT yongjinjeon newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT giyoonkim newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT jongsungkim newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT boyeonsim newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT donggukhan newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT hwajeongseo newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT seonggyeomkim newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT seokhiehong newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT jaechulsung newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication AT deukjohong newmethodfordesigninglightweightsboxeswithhighdifferentialandlinearbranchnumbersanditsapplication |
| _version_ |
1718425225875423232 |