Search

Your search keyword '"Rimoldi, Anna"' showing total 15 results
Start Over Author "Rimoldi, Anna" Publication Year Range Last 50 years
15 results on '"Rimoldi, Anna"'

1. A note on an infeasible linearization of some block ciphers

Author

Aragona, Riccardo, Rimoldi, Anna, and Sala, Massimiliano

Subjects
Mathematics - Group Theory, 20B35, 94A60
Abstract

A block cipher can be easily broken if its encryption functions can be seen as linear maps on a small vector space. Even more so, if its round functions can be seen as linear maps on a small vector space. We show that this cannot happen for the AES. More precisely, we prove that if the AES round transformations can be embedded into a linear cipher acting on a vector space, then this space is huge-dimensional and so this embedding is infeasible in practice. We present two elementary proofs., Comment: to appear in Journal of Discrete Mathematical Sciences and Cryptography. arXiv admin note: substantial text overlap with arXiv:1006.5894

Published
2015
Full Text
View/download PDF

2. Fast matrix decomposition in F2

Author

Bertolazzi, Enrico and Rimoldi, Anna

Subjects
Mathematics - Numerical Analysis, Computer Science - Numerical Analysis
Abstract

In this work an efficient algorithm to perform a block decomposition (and so to compute the rank) of large dense rectangular matrices with entries in $\mathbb{F}_2$ is presented. Depending on the way the matrix is stored, the operations acting on rows or block of consecutive columns (stored as one integer) should be preferred. In this paper, an algorithm that completely avoids the column permutations is given. In particular, a block decomposition is presented and its running times are compared with the ones adopted into SAGE., Comment: 20 pages, 4 figure, 6 tables, 1 algorithm

Published
2012
Full Text
View/download PDF

3. On the provable security of BEAR and LION schemes

Author

Maines, Lara, Piva, Matteo, Rimoldi, Anna, and Sala, Massimiliano

Subjects
Computer Science - Cryptography and Security, Computer Science - Information Theory, Mathematics - Combinatorics
Abstract

BEAR, LION and LIONESS are block ciphers presented by Biham and Anderson (1996), inspired by the famous Luby-Rackoff constructions of block ciphers from other cryptographic primitives (1988). The ciphers proposed by Biham and Anderson are based on one stream cipher and one hash function. Good properties of the primitives ensure good properties of the block cipher. In particular, they are able to prove that their ciphers are immune to any efficient known-plaintext key-recovery attack that can use as input only one plaintext-ciphertext pair. Our contribution is showing that these ciphers are actually immune to any efficient known-plaintext key-recovery attack that can use as input any number of plaintext-ciphertext pairs. We are able to get this improvement by using slightly weaker hypotheses on the primitives. We also discuss the attack by Morin (1996).

Published
2011

4. On weakly APN functions and 4-bit S-Boxes

Author

Fontanari, Claudio, Pulice, Valentina, Rimoldi, Anna, and Sala, Massimiliano

Subjects
Computer Science - Cryptography and Security, Mathematics - Combinatorics
Abstract

S-Boxes are important security components of block ciphers. We provide theoretical results on necessary or sufficient criteria for an (invertible) 4-bit S-Box to be weakly APN. Thanks to a classification of 4-bit invertible S-Boxes achieved independently by De Canni\'ere and Leander-Poschmann, we can strengthen our results with a computer-aided proof.

Published
2011

5. Do AES encryptions act randomly?

Author

Rimoldi, Anna, Sala, Massimiliano, and Bertolazzi, Enrico

Subjects
Computer Science - Information Theory, Computer Science - Cryptography and Security
Abstract

The Advanced Encryption Standard (AES) is widely recognized as the most important block cipher in common use nowadays. This high assurance in AES is given by its resistance to ten years of extensive cryptanalysis, that has shown no weakness, not even any deviation from the statistical behaviour expected from a random permutation. Only reduced versions of the ciphers have been broken, but they are not usually implemented. In this paper we build a distinguishing attack on the AES, exploiting the properties of a novel cipher embedding. With our attack we give some statistical evidence that the set of AES-$128$ encryptions acts on the message space in a way significantly different than that of the set of random permutations acting on the same space. While we feel that more computational experiments by independent third parties are needed in order to validate our statistical results, we show that the non-random behaviour is the same as we would predict using the property of our embedding. Indeed, the embedding lowers the nonlinearity of the AES rounds and therefore the AES encryptions tend, on average, to keep low the rank of low-rank matrices constructed in the large space. Our attack needs $2^{23}$ plaintext-ciphertext pairs and costs the equivalent of $2^{48}$ encryptions. We expect our attack to work also for AES-$192$ and AES-$256$, as confirmed by preliminary experiments., Comment: 15 pages

Published
2010

6. A possible intrinsic weakness of AES and other cryptosystems

Author

Rimoldi, Anna, Sala, Massimiliano, and Toli, Ilia

Subjects
Computer Science - Information Theory, Computer Science - Cryptography and Security
Abstract

It has been suggested that the algebraic structure of AES (and other similar block ciphers) could lead to a weakness exploitable in new attacks. In this paper, we use the algebraic structure of AES-like ciphers to construct a cipher embedding where the ciphers may lose their non-linearity. We show some examples and we discuss the limitations of our approach., Comment: 46 pages- updated bibliography and fixed minor problems

Published
2010

12. On algebraic and statistical properties of AES-like ciphers

Author

Rimoldi, Anna and Sala, Massimiliano

Subjects
MAT/02 ALGEBRA, Hardware_ARITHMETICANDLOGICSTRUCTURES
Abstract

The Advanced Encryption Standard (AES) is nowadays the most widespread block cipher in commercial applications. It represents the state-of-art in block cipher design and provides an unparalleled level of assurance against all known cryptanalytic techniques, except for its reduced versions. Moreover, there is no known efficient way to distinguish it from a set of random permutations. The AES (and other modern block ciphers) presents a highly algebraic structure, which led researchers to exploit it for novel algebraic attacks. These tries have been unsuccessful, except for academic reduced versions. Starting from an intuition by I. Toli, we have developed a mixed algebraic-statistical attack. Using the internal algebraic structure of any AES-like cipher, we build an algebraic setting where a related-key (statistical) distinguishing attack can be mounted. Our data reveals a significant deviation of the full AES-128 from a set of random permutations. Although there are recent successful related-key attacks on the full AES-192 and the full AES-256 (with non-practical complexity), our attack would be the first-ever practical distinguishing attack on the full AES-128 (to the best of our knowledge).

Published
2009

13. On algebraic and statistical properties of AES-like ciphers

Author

Sala, Massimiliano, Rimoldi, Anna, Sala, Massimiliano, and Rimoldi, Anna

Abstract

The Advanced Encryption Standard (AES) is nowadays the most widespread block cipher in commercial applications. It represents the state-of-art in block cipher design and provides an unparalleled level of assurance against all known cryptanalytic techniques, except for its reduced versions. Moreover, there is no known efficient way to distinguish it from a set of random permutations. The AES (and other modern block ciphers) presents a highly algebraic structure, which led researchers to exploit it for novel algebraic attacks. These tries have been unsuccessful, except for academic reduced versions. Starting from an intuition by I. Toli, we have developed a mixed algebraic-statistical attack. Using the internal algebraic structure of any AES-like cipher, we build an algebraic setting where a related-key (statistical) distinguishing attack can be mounted. Our data reveals a significant deviation of the full AES-128 from a set of random permutations. Although there are recent successful related-key attacks on the full AES-192 and the full AES-256 (with non-practical complexity), our attack would be the first-ever practical distinguishing attack on the full AES-128 (to the best of our knowledge).

Published
2009

Catalog

Books, media, physical & digital resources
See catalog results