The block ciphers MISTY1and MISTY2 proposed by Matsui are based on the principle of provable security against differential and linear cryptanalysis. This paper presents attacks on reduced-round variants of both ciphers, without as well as with the key-dependent linear functions FL. The attacks employ collision-searching techniques and impossible differentials. KASUMI, a MISTY variant to be used in next generation cellular phones, can be attacked with the latter method faster than brute force when reduced to six sounds.
Weitere Kapitel dieses Buchs durch Wischen aufrufen
- Cryptanalysis of Reduced-Round MISTY
- Springer Berlin Heidelberg