Your browser does not support JavaScript!
http://iet.metastore.ingenta.com
1887

access icon free Practical-time related-key attack on Hummingbird-2

© The Institution of Engineering and Technology
Received 27/08/2014, Accepted 17/02/2015, Revised 15/02/2015, Published 05/05/2015

Hummingbird-2, designed by Engels et al., is a lightweight cipher with built-in MAC functionality. In this study, the authors examine the security of Hummingbird-2 in the related-key model. First, the authors define a new cryptographic notion of an S-box, called combination points, based on its differential equation, and demonstrate some properties of combination points. A potential application of the new notion is to recover some partial input of an S-box, and the authors show this on Hummingbird-2 by recovering some internal state bits. Then, by carefully studying the differential distributions of the S-boxes, a set of key dependent S-boxes can be derived and be used to recover the subkey word of Hummingbird-2. At last, by the divide and conquer strategy, all the 128 key bits can be recovered with a complexity of 240, which is much lower than that (264) of the attack at FSE 2013. The attack has been fully implemented on a PC and the secret key has been recovered in a few hours. The results provide some new insights into the design of cryptographic S-boxes.

Inspec keywords: cryptography; divide and conquer methods

Other keywords: practical-time related-key attack; internal state bits; MAC functionality; divide and conquer strategy; combination points; cryptographic notion; lightweight cipher; Hummingbird-2; differential equation; cryptographic S-boxes

Subjects: Cryptography; Artificial intelligence (theory); Data security

References

    1. 1)
      • 4. Engels, D., Saarinen, M.J.O., Schweitzer, P., Smith, E.M.: ‘The Hummingbird-2 lightweight authenticated encryption algorithm’. RFIDSec 2011, 2011, (LNCS, 7055), pp. 1931.
    2. 2)
      • 2. Whiting, D., Schneier, B., Lucks, S., Muller, F.: ‘Phelix: Fast encryption and authentication in a single cryptographic primitive’. Technical Report 2005/027, In eSTREAM, ECRYPT Stream Cipher Project, 2005.
    3. 3)
      • 20. Saarinen, M.J.O.: ‘Related-key attacks against full hummingbird-2’. FSE 2013, 2014, (LNCS, 8424), pp. 467482.
    4. 4)
      • 5. ‘Directions in authenticated ciphers’, http://hyperelliptic.org/DIAC/.
    5. 5)
      • 14. Wu, H., Preneel, B.: ‘Differential-linear attacks against the stream cipher Phelix’. FSE 2007, 2007, (LNCS, 4593), pp. 87100.
    6. 6)
      • 12. Paul, S., Preneel, B.: ‘Near optimal algorithms for solving differential equations of addition with batch queries’. Indocrypt 2005, 2005, (LNCS, 3797), pp. 90103.
    7. 7)
      • 17. Chai, Q., Gong, G.: ‘A cryptanalysis of hummingbird-2: The Differential Sequence Analysis’. IACR Cryptology ePrint Archive, 2012/233, 2012.
    8. 8)
    9. 9)
      • 10. Iwata, T., Yasuda, K.: ‘HBS: a single-key mode of operation for deterministic authenticated encryption’. FSE 2009, 2009, (LNCS, 5665), pp. 394415.
    10. 10)
      • 11. Muller, F.: ‘Differential attacks against the Helix stream cipher’. FSE 2004, 2004, (LNCS, 3017), pp. 94108.
    11. 11)
      • 1. Ferguson, N., Whiting, D., Schneier, B., Kelsey, J., Lucks, S., Kohno, T.: ‘Helix, fast encryption and authentication in a single cryptographic primitive’. FSE 2003, 2003, (LNCS, 2887), pp. 330346.
    12. 12)
      • 13. Paul, S., Preneel, B.: ‘Solving systems of differential equations of addition’. ACISP 2005, 2005, (LNCS, 3574), pp. 7588.
    13. 13)
      • 19. Zhu, B., Gong, G.: ‘Multidimensional meet-in-the-middle attack and its applications to GOST, KTANTAN and hummingbird-2’. IACR ePrint 2011/619, http://eprint.iacr.org/2011/619 (posted 18-Feb-2012 00:09:51 UTC).
    14. 14)
      • 9. Iwata, T.: ‘New blockcipher modes of operation with beyond the birthday bound security’. FSE 2006, 2006, (LNCS, 4047), pp. 310327.
    15. 15)
      • 16. Saarinen, M.J.O.: ‘Cryptanalysis of hummingbird-1’. FSE 2011, 2011, (LNCS, 6733), pp. 328341.
    16. 16)
      • 7. Whiting, D., Housley, R., Ferguson, N.: ‘AES encryption & authentication using CTR mode & CBC-MAC’, IEEE P802.11, 2002.
    17. 17)
      • 15. Shi, Z., Zhang, B., Feng, D.: ‘Cryptanalysis of Helix and Phelix revisited’. ACISP 2013, 2013, (LNCS, 7959), pp. 2740.
    18. 18)
      • 3. Engels, D., Fan, X., Gong, G., Hu, H., Smith, E.M.: ‘Hummingbird: Ultra-lightweight cryptography for resource-constrained devices’. FC 2010, 2010, (LNCS, 6054), pp. 318.
    19. 19)
      • 8. McGrew, D., Viega, J.: ‘The security and performance of the Galois/counter mode (GCM) of operation’. INDOCRYPT 2004, 2004, (LNCS, 3348), pp. 343355.
    20. 20)
      • 18. Fan, X., Gong, G.: ‘On the security of hummingbird-2 against side channel cube attacks’. WEWoRC 2011, 2012, (LNCS, 7242), pp. 1829.
http://iet.metastore.ingenta.com/content/journals/10.1049/iet-ifs.2014.0424
Loading

Related content

content/journals/10.1049/iet-ifs.2014.0424
pub_keyword,iet_inspecKeyword,pub_concept
6
6
Loading
Print this page
This is a required field
Please enter a valid email address