Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy
The best-known distinguisher on 7-round Ascon-128 and Ascon-128a AEAD uses a 60-dimensional cube where the nonce bits are set to be equal in the third and fourth rows of the Ascon state during initialization (Rohit et al. ToSC 2021/1). It was not known how to use this distinguisher to mount key-reco...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Article |
| Language: | English |
| Published: |
2024
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/181761 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-181761 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-1817612024-12-23T15:35:11Z Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy Hu, Kai School of Physical and Mathematical Sciences Mathematical Sciences AEAD Conditional Cube Attack The best-known distinguisher on 7-round Ascon-128 and Ascon-128a AEAD uses a 60-dimensional cube where the nonce bits are set to be equal in the third and fourth rows of the Ascon state during initialization (Rohit et al. ToSC 2021/1). It was not known how to use this distinguisher to mount key-recovery attacks. In this paper, we investigate this problem using a new strategy called break-fix for the conditional cube attack. The idea is to introduce slightly-modified cubes which increase the degrees of 7-round output bits to be more than 59 (break phase) and then find key conditions which can bring the degree back to 59 (fix phase). Using this idea, key-recovery attacks on 7-round Ascon-128, Ascon-128a and Ascon-80pq are proposed. The attacks have better time/memory complexities than the existing attacks, and in some cases improve the weak-key attacks as well. National Research Foundation (NRF) Published version The authors are supported by the Program of Qilu Young Scholars of Shandong University, the France-Singapore NRF-ANR research grant NRF2020-NRF-ANR072, the Singapore NRF Investigatorship research grant NRFNRFI08-2022-0013, the National Key Research and Development Program of China (Grant No. 2018YFA0704702), the National Natural Science Foundation of China (Grant No. 62032014, U2336207), the Major Basic Research Project of Natural Science Foundation of Shandong Province, China (Grant No. ZR202010220025), Department of Science & Technology of Shandong Province (No.SYS202201), Quan Cheng Laboratory (Grant No. QCLZD202301, QCLZD202306). 2024-12-17T00:52:12Z 2024-12-17T00:52:12Z 2024 Journal Article Hu, K. (2024). Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy. IACR Transactions On Symmetric Cryptology, 2024(2), 118-140. https://dx.doi.org/10.46586/tosc.v2024.i2.118-140 2519-173X https://hdl.handle.net/10356/181761 10.46586/tosc.v2024.i2.118-140 2-s2.0-85197285766 2 2024 118 140 en NRF2020-NRF-ANR072 NRF-NRFI08-2022-0013 IACR Transactions on Symmetric Cryptology © 2024 Kai Hu. This work is licensed under a Creative Commons Attribution 4.0 International License. application/pdf |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
Mathematical Sciences AEAD Conditional Cube Attack |
| spellingShingle |
Mathematical Sciences AEAD Conditional Cube Attack Hu, Kai Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy |
| description |
The best-known distinguisher on 7-round Ascon-128 and Ascon-128a AEAD uses a 60-dimensional cube where the nonce bits are set to be equal in the third and fourth rows of the Ascon state during initialization (Rohit et al. ToSC 2021/1). It was not known how to use this distinguisher to mount key-recovery attacks. In this paper, we investigate this problem using a new strategy called break-fix for the conditional cube attack. The idea is to introduce slightly-modified cubes which increase the degrees of 7-round output bits to be more than 59 (break phase) and then find key conditions which can bring the degree back to 59 (fix phase). Using this idea, key-recovery attacks on 7-round Ascon-128, Ascon-128a and Ascon-80pq are proposed. The attacks have better time/memory complexities than the existing attacks, and in some cases improve the weak-key attacks as well. |
| author2 |
School of Physical and Mathematical Sciences |
| author_facet |
School of Physical and Mathematical Sciences Hu, Kai |
| format |
Article |
| author |
Hu, Kai |
| author_sort |
Hu, Kai |
| title |
Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy |
| title_short |
Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy |
| title_full |
Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy |
| title_fullStr |
Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy |
| title_full_unstemmed |
Improved conditional cube attacks on Ascon AEADs in nonce-respecting settings with a break-fix strategy |
| title_sort |
improved conditional cube attacks on ascon aeads in nonce-respecting settings with a break-fix strategy |
| publishDate |
2024 |
| url |
https://hdl.handle.net/10356/181761 |
| _version_ |
1820027755401576448 |