Linear Cryptanalysis of DES

The main goal of this diploma work is the implementation of Matsui's linear cryptanalysis of DES and a statistical and theoretical analysis of its complexity and success probability. In order to achieve this goal, we implement first a very fast DES routine on the Intel Pentium III MMX architecture which is optimised for linear cryptanalysis. New implementation concepts are applied, resulting in a speed increase of almost 50% towards the best known classical implementation. The experimental results suggest strongly that the attack is in average about 10 times faster (O(239) DES computations) as expected with 243 known plaintext-ciphertext at disposal; furthermore, we have achieved a complexity of O(243) by using only 242.5 known pairs. Last, we propose a new analytical expression which approximates success probabilities; it gives slightly better results than Matsui's experimental ones.

Chat with Graph Search

Ask any question about EPFL courses, lectures, exercises, research, news, etc. or try the example questions below.

DISCLAIMER: The Graph Chatbot is not programmed to provide explicit or categorical answers to your questions. Rather, it transforms your questions into API requests that are distributed across the various IT services officially administered by EPFL. Its purpose is solely to collect and recommend relevant references to content that you can explore to help you answer your questions.

Linear Cryptanalysis of DES

Graph Chatbot

Chat with Graph Search

Cryptanalysis of LowMC instances using single plaintext/ciphertext pair

Breaking The FF3 Format-Preserving Encryption Standard Over Small Domains

GIFT: A Small Present Towards Reaching the Limit of Lightweight Encryption

GIFT: A Small Present Towards Reaching the Limit of Lightweight Encryption

Cryptanalysis of LowMC instances using single plaintext/ciphertext pair

Breaking The FF3 Format-Preserving Encryption Standard Over Small Domains