Publication IEICE TRANSACTIONS on Fundamentals of Electronics, Communications and Computer SciencesVol.E93-ANo.1pp.327-330 Publication Date: 2010/01/01 Online ISSN: 1745-1337 DOI: 10.1587/transfun.E93.A.327 Print ISSN: 0916-8508 Type of Manuscript: LETTER Category: Cryptography and Information Security Keyword: AES, general impossible differential attack, time complexity, data complexity,
Full Text: PDF(352KB)>>
Summary: Impossible differential attack (IDA) uses impossible differential characteristics extracted from enough plaintext pairs to retrieve subkeys of the first and the last several rounds of AES. In this paper, a general IDA on 7-round AES is proposed. Such attack takes the number of all-zero columns of the 7th and the 6th round as parameters (α,β). And a trade-off relation between the number of plaintexts and times of encryptions in the process of the attack is derived, which makes only some values of (α,β) allowed in the attack for different key length.
