TY - GEN
T1 - Improved Differential-ML Distinguisher
T2 - 23rd International Conference on Information and Communications Security, ICICS 2021
AU - Wang, Gao
AU - Wang, Gaoli
N1 - Publisher Copyright:
© 2021, Springer Nature Switzerland AG.
PY - 2021
Y1 - 2021
N2 - At CRYPTO 2019, Gohr first proposes a deep learning based differential analysis on round-reduced Speck32/64. Then Yadav etal. present a framework to construct the differential-ML (machine learning) distinguisher by combining the traditional differential distinguisher and the machine learning based differential distinguisher, which breaks the limit of the ML differential distinguisher on the number of attack rounds. However, the results obtained based on this method are not necessarily better than the results gained by traditional analysis. In this paper, we offer three novel greedy strategies (M1, M2 and M3 ) to solve this problem. The strategy M1 provides better differential-ML distinguishers by considering all combinations of classical differential distinguishers and ML differential distinguishers. And the strategy M2 uses the best ML differential distinguishers to splice classical differential distinguishers forward, while the strategy M3 adopts the best classical differential distinguishers to splice ML differential distinguishers. As proof of works, we apply our methods to round-reduced Speck32/64, Speck48/72 and Speck64/96 and get some improved cryptanalysis results. For the construction of differential-ML distinguishers, we can reach 11-round Speck32/64, 14-round Speck48/72 and 18-round Speck64/96 with 2 27, 2 45, 2 62 data respectively.
AB - At CRYPTO 2019, Gohr first proposes a deep learning based differential analysis on round-reduced Speck32/64. Then Yadav etal. present a framework to construct the differential-ML (machine learning) distinguisher by combining the traditional differential distinguisher and the machine learning based differential distinguisher, which breaks the limit of the ML differential distinguisher on the number of attack rounds. However, the results obtained based on this method are not necessarily better than the results gained by traditional analysis. In this paper, we offer three novel greedy strategies (M1, M2 and M3 ) to solve this problem. The strategy M1 provides better differential-ML distinguishers by considering all combinations of classical differential distinguishers and ML differential distinguishers. And the strategy M2 uses the best ML differential distinguishers to splice classical differential distinguishers forward, while the strategy M3 adopts the best classical differential distinguishers to splice ML differential distinguishers. As proof of works, we apply our methods to round-reduced Speck32/64, Speck48/72 and Speck64/96 and get some improved cryptanalysis results. For the construction of differential-ML distinguishers, we can reach 11-round Speck32/64, 14-round Speck48/72 and 18-round Speck64/96 with 2 27, 2 45, 2 62 data respectively.
KW - Differential analysis
KW - Lightweight ciphers
KW - Machine learning
KW - Speck
UR - https://www.scopus.com/pages/publications/85116034362
U2 - 10.1007/978-3-030-88052-1_2
DO - 10.1007/978-3-030-88052-1_2
M3 - 会议稿件
AN - SCOPUS:85116034362
SN - 9783030880514
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 21
EP - 38
BT - Information and Communications Security - 23rd International Conference, ICICS 2021, Proceedings
A2 - Gao, Debin
A2 - Li, Qi
A2 - Guan, Xiaohong
A2 - Liao, Xiaofeng
PB - Springer Science and Business Media Deutschland GmbH
Y2 - 19 November 2021 through 21 November 2021
ER -