{"id":"https://openalex.org/W4386075316","doi":"https://doi.org/10.1109/isit54713.2023.10206853","title":"Differential cryptanalysis of Mod-2/Mod-3 constructions of binary weak PRFs","display_name":"Differential cryptanalysis of Mod-2/Mod-3 constructions of binary weak PRFs","publication_year":2023,"publication_date":"2023-06-25","ids":{"openalex":"https://openalex.org/W4386075316","doi":"https://doi.org/10.1109/isit54713.2023.10206853"},"language":"en","primary_location":{"id":"doi:10.1109/isit54713.2023.10206853","is_oa":false,"landing_page_url":"https://doi.org/10.1109/isit54713.2023.10206853","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Symposium on Information Theory (ISIT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5019956193","display_name":"Thomas Johansson","orcid":"https://orcid.org/0000-0003-1798-570X"},"institutions":[{"id":"https://openalex.org/I187531555","display_name":"Lund University","ror":"https://ror.org/012a77v79","country_code":"SE","type":"education","lineage":["https://openalex.org/I187531555"]}],"countries":["SE"],"is_corresponding":true,"raw_author_name":"Thomas Johansson","raw_affiliation_strings":["Lund University"],"affiliations":[{"raw_affiliation_string":"Lund University","institution_ids":["https://openalex.org/I187531555"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5086309954","display_name":"Willi Meier","orcid":"https://orcid.org/0000-0003-4594-1501"},"institutions":[{"id":"https://openalex.org/I2972652528","display_name":"FHNW University of Applied Sciences and Arts","ror":"https://ror.org/04mq2g308","country_code":"CH","type":"education","lineage":["https://openalex.org/I2972652528"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Willi Meier","raw_affiliation_strings":["University of Applied Sciences and Arts,Northwestern Switzerland","University of Applied Sciences and Arts, Northwestern Switzerland"],"affiliations":[{"raw_affiliation_string":"University of Applied Sciences and Arts,Northwestern Switzerland","institution_ids":["https://openalex.org/I2972652528"]},{"raw_affiliation_string":"University of Applied Sciences and Arts, Northwestern Switzerland","institution_ids":["https://openalex.org/I2972652528"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100615287","display_name":"Vu Nguyen","orcid":"https://orcid.org/0009-0006-2887-6161"},"institutions":[{"id":"https://openalex.org/I187531555","display_name":"Lund University","ror":"https://ror.org/012a77v79","country_code":"SE","type":"education","lineage":["https://openalex.org/I187531555"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Vu Nguyen","raw_affiliation_strings":["Lund University"],"affiliations":[{"raw_affiliation_string":"Lund University","institution_ids":["https://openalex.org/I187531555"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5019956193"],"corresponding_institution_ids":["https://openalex.org/I187531555"],"apc_list":null,"apc_paid":null,"fwci":0.3491,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.65088542,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"477","last_page":"482"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11130","display_name":"Coding theory and cryptography","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/random-oracle","display_name":"Random oracle","score":0.7483487129211426},{"id":"https://openalex.org/keywords/mod","display_name":"Mod","score":0.7103880047798157},{"id":"https://openalex.org/keywords/hamming-weight","display_name":"Hamming weight","score":0.5811169147491455},{"id":"https://openalex.org/keywords/oracle","display_name":"Oracle","score":0.5586002469062805},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.5176578164100647},{"id":"https://openalex.org/keywords/discrete-mathematics","display_name":"Discrete mathematics","score":0.5153324007987976},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5097920298576355},{"id":"https://openalex.org/keywords/binary-number","display_name":"Binary number","score":0.46711549162864685},{"id":"https://openalex.org/keywords/hamming-distance","display_name":"Hamming distance","score":0.46207788586616516},{"id":"https://openalex.org/keywords/combinatorics","display_name":"Combinatorics","score":0.45532017946243286},{"id":"https://openalex.org/keywords/prime","display_name":"Prime (order theory)","score":0.4255012571811676},{"id":"https://openalex.org/keywords/cryptanalysis","display_name":"Cryptanalysis","score":0.4108169972896576},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.3990873396396637},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.37774956226348877},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.36997371912002563},{"id":"https://openalex.org/keywords/hamming-code","display_name":"Hamming code","score":0.3138045072555542},{"id":"https://openalex.org/keywords/arithmetic","display_name":"Arithmetic","score":0.26197248697280884},{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.12408804893493652},{"id":"https://openalex.org/keywords/decoding-methods","display_name":"Decoding methods","score":0.11953139305114746},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.11008912324905396},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.07826843857765198}],"concepts":[{"id":"https://openalex.org/C94284585","wikidata":"https://www.wikidata.org/wiki/Q228184","display_name":"Random oracle","level":4,"score":0.7483487129211426},{"id":"https://openalex.org/C29231244","wikidata":"https://www.wikidata.org/wiki/Q865493","display_name":"Mod","level":2,"score":0.7103880047798157},{"id":"https://openalex.org/C63361517","wikidata":"https://www.wikidata.org/wiki/Q5645805","display_name":"Hamming weight","level":5,"score":0.5811169147491455},{"id":"https://openalex.org/C55166926","wikidata":"https://www.wikidata.org/wiki/Q2892946","display_name":"Oracle","level":2,"score":0.5586002469062805},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.5176578164100647},{"id":"https://openalex.org/C118615104","wikidata":"https://www.wikidata.org/wiki/Q121416","display_name":"Discrete mathematics","level":1,"score":0.5153324007987976},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5097920298576355},{"id":"https://openalex.org/C48372109","wikidata":"https://www.wikidata.org/wiki/Q3913","display_name":"Binary number","level":2,"score":0.46711549162864685},{"id":"https://openalex.org/C193319292","wikidata":"https://www.wikidata.org/wiki/Q272172","display_name":"Hamming distance","level":2,"score":0.46207788586616516},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.45532017946243286},{"id":"https://openalex.org/C184992742","wikidata":"https://www.wikidata.org/wiki/Q7243229","display_name":"Prime (order theory)","level":2,"score":0.4255012571811676},{"id":"https://openalex.org/C181149355","wikidata":"https://www.wikidata.org/wiki/Q897511","display_name":"Cryptanalysis","level":3,"score":0.4108169972896576},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.3990873396396637},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.37774956226348877},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.36997371912002563},{"id":"https://openalex.org/C73150493","wikidata":"https://www.wikidata.org/wiki/Q853922","display_name":"Hamming code","level":4,"score":0.3138045072555542},{"id":"https://openalex.org/C94375191","wikidata":"https://www.wikidata.org/wiki/Q11205","display_name":"Arithmetic","level":1,"score":0.26197248697280884},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.12408804893493652},{"id":"https://openalex.org/C57273362","wikidata":"https://www.wikidata.org/wiki/Q576722","display_name":"Decoding methods","level":2,"score":0.11953139305114746},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.11008912324905396},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.07826843857765198},{"id":"https://openalex.org/C157125643","wikidata":"https://www.wikidata.org/wiki/Q884707","display_name":"Block code","level":3,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/isit54713.2023.10206853","is_oa":false,"landing_page_url":"https://doi.org/10.1109/isit54713.2023.10206853","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Symposium on Information Theory (ISIT)","raw_type":"proceedings-article"},{"id":"pmh:oai:lup.lub.lu.se:d00ee393-de9e-4390-b356-1eddea7da436","is_oa":false,"landing_page_url":"https://lup.lub.lu.se/record/d00ee393-de9e-4390-b356-1eddea7da436","pdf_url":null,"source":{"id":"https://openalex.org/S4306400536","display_name":"Lund University Publications (Lund University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I187531555","host_organization_name":"Lund University","host_organization_lineage":["https://openalex.org/I187531555"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":28,"referenced_works":["https://openalex.org/W57300150","https://openalex.org/W162790823","https://openalex.org/W566315627","https://openalex.org/W1499953847","https://openalex.org/W1512372863","https://openalex.org/W1573157032","https://openalex.org/W1709606117","https://openalex.org/W1890539633","https://openalex.org/W2043711803","https://openalex.org/W2106332032","https://openalex.org/W2111786286","https://openalex.org/W2123485784","https://openalex.org/W2131300413","https://openalex.org/W2147717514","https://openalex.org/W2160000391","https://openalex.org/W2293331969","https://openalex.org/W2604862294","https://openalex.org/W2795305715","https://openalex.org/W2899793533","https://openalex.org/W3003686169","https://openalex.org/W3164508328","https://openalex.org/W4214644294","https://openalex.org/W4283511981","https://openalex.org/W4287332156","https://openalex.org/W6602358802","https://openalex.org/W6679265533","https://openalex.org/W6773548445","https://openalex.org/W6790111226"],"related_works":["https://openalex.org/W2008960744","https://openalex.org/W2105471374","https://openalex.org/W2963549154","https://openalex.org/W2158117886","https://openalex.org/W1987803429","https://openalex.org/W1582340598","https://openalex.org/W1519122282","https://openalex.org/W2182731056","https://openalex.org/W3013281356","https://openalex.org/W2740543340"],"abstract_inverted_index":{"Pseudo-random":[0],"functions":[1],"are":[2],"a":[3,14,118],"fundamental":[4],"building":[5],"block":[6],"in":[7,99,117],"many":[8],"cryptographic":[9],"applications.":[10],"In":[11,35],"certain":[12],"scenarios,":[13],"weaker":[15],"notion":[16],"(where":[17],"security":[18],"is":[19,33,78,134],"restricted":[20,100],"to":[21,138],"uniformly":[22],"random":[23],"input),":[24],"but":[25],"more":[26,136],"computationally":[27],"efficient,":[28],"called":[29],"weak":[30,47],"pseudo-random":[31,48],"functions,":[32],"sufficient.":[34],"this":[36,89],"work,":[37],"we":[38,107,121],"present":[39],"new":[40],"differential":[41],"attacks":[42],"on":[43],"the":[44,52,57,61,79],"main":[45],"binary":[46],"function":[49],"constructions,":[50],"namely":[51],"so-called":[53],"Alternative":[54,58],"Mod-2/Mod-3.":[55],"For":[56],"Mod-2/Mod-3":[59],"wPRF,":[60],"best":[62],"distinguisher":[63],"proposed":[64,125],"by":[65],"Cheon":[66],"et":[67],"al.":[68],"achieves":[69],"O(2":[70,110],"<sup":[71,111],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[72,112],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">0.21n</sup>":[73],")":[74,114],"complexity,":[75,106],"where":[76],"n":[77],"input":[80],"length.":[81],"We":[82],"show":[83],"that":[84,95,123],"our":[85,139],"attack":[86],"asymptotically":[87],"outperforms":[88],"and":[90],"requires":[91],"far":[92],"fewer":[93],"samples":[94],"can":[96,108],"be":[97],"applied":[98],"oracle":[101],"settings.":[102],"By":[103],"minimizing":[104],"computational":[105],"achieve":[109],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">0.166n</sup>":[113],"complexity.":[115],"Additionally,":[116],"small":[119],"experiment,":[120],"indicate":[122],"their":[124],"fix":[126],"of":[127],"using":[128],"keys":[129],"with":[130],"large":[131],"Hamming":[132],"weight":[133],"even":[135],"vulnerable":[137],"attack.":[140]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1}],"updated_date":"2026-01-13T01:12:25.745995","created_date":"2025-10-10T00:00:00"}