Abstract
MISTY1 is a block cipher designed by Matsui in 1997. It is widely deployed in Japan, and is recognized internationally as a European NESSIE-recommended cipher and an ISO standard. After almost 20 years of unsuccessful cryptanalytic attempts, a first attack on the full MISTY1 was presented at CRYPTO 2015 by Yosuke Todo. The attack, using a new technique called division property, requires almost the full codebook and has time complexity of 2107.3 encryptions. In this paper we present a new attack on the full MISTY1. It is based on Todo’s division property, along with a variety of refined key-recovery techniques. Our attack requires almost the full codebook (like Todo’s attack), but allows to retrieve 49 bits of the secret key in time complexity of only 264 encryptions, and the full key in time complexity of 269.5 encryptions. While our attack is clearly impractical due to its large data complexity, it shows that MISTY1 provides security of only 270 — significantly less than what was considered before.
| Original language | English |
|---|---|
| Title of host publication | Advances in Cryptology - 36th Annual International Cryptology Conference, CRYPTO 2016, Proceedings |
| Editors | Matthew Robshaw, Jonathan Katz |
| Publisher | Springer Verlag |
| Pages | 435-456 |
| Number of pages | 22 |
| ISBN (Print) | 9783662530177 |
| DOIs | |
| State | Published - 2016 |
| Event | 36th Annual International Cryptology Conference, CRYPTO 2016 - Santa Barbara, United States Duration: 14 Aug 2016 → 18 Aug 2016 |
Publication series
| Name | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
|---|---|
| Volume | 9814 |
Conference
| Conference | 36th Annual International Cryptology Conference, CRYPTO 2016 |
|---|---|
| Country/Territory | United States |
| City | Santa Barbara |
| Period | 14/08/16 → 18/08/16 |
All Science Journal Classification (ASJC) codes
- Theoretical Computer Science
- General Computer Science