This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
paes [21/03/2014 08:02:33] mmeh [Cryptanalysis] |
paes [25/03/2014 09:44:07] stek |
||
---|---|---|---|
Line 6: | Line 6: | ||
===== Cryptanalysis ===== | ===== Cryptanalysis ===== | ||
+ | ^ Type ^ Number of Queries ^ Computations ^ Reference ^ Comment ^ | ||
+ | | Forgery | 2 pow 11 | 2 pow 11 | Yu Sasaki and Lei Wang[(ref:caesar:cryptoeprint2014218)] | | | ||
+ | |||
+ | |||
Jérémy Jean and Ivica Nikolić describe a distinguisher for PAES in [[http://www1.spms.ntu.edu.sg/~syllab/m/images/6/6e/Using_AES_Round_Symmetries_to_Distinguish_PAES.pdf|this note]]. Independently, Markku-Juhani O. Saarinen reports issues with rotational invariants in PAES in [[https://groups.google.com/forum/#!topic/crypto-competitions/vRmJdRQBzOo|this thread]] that lead to distinguishing and key-recovery shortcuts. | Jérémy Jean and Ivica Nikolić describe a distinguisher for PAES in [[http://www1.spms.ntu.edu.sg/~syllab/m/images/6/6e/Using_AES_Round_Symmetries_to_Distinguish_PAES.pdf|this note]]. Independently, Markku-Juhani O. Saarinen reports issues with rotational invariants in PAES in [[https://groups.google.com/forum/#!topic/crypto-competitions/vRmJdRQBzOo|this thread]] that lead to distinguishing and key-recovery shortcuts. | ||
+ | |||
+ |