{"id":"https://openalex.org/W4415367790","doi":"https://doi.org/10.1109/tit.2025.3623726","title":"Practical Key Collision on AES and Kiasu-BC","display_name":"Practical Key Collision on AES and Kiasu-BC","publication_year":2025,"publication_date":"2025-10-20","ids":{"openalex":"https://openalex.org/W4415367790","doi":"https://doi.org/10.1109/tit.2025.3623726"},"language":null,"primary_location":{"id":"doi:10.1109/tit.2025.3623726","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tit.2025.3623726","pdf_url":null,"source":{"id":"https://openalex.org/S4502562","display_name":"IEEE Transactions on Information Theory","issn_l":"0018-9448","issn":["0018-9448","1557-9654"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Theory","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5073787442","display_name":"Jianqiang Ni","orcid":"https://orcid.org/0000-0001-8314-4402"},"institutions":[{"id":"https://openalex.org/I4210139618","display_name":"Shanghai Key Laboratory of Trustworthy Computing","ror":"https://ror.org/030qbr085","country_code":"CN","type":"facility","lineage":["https://openalex.org/I4210139618"]},{"id":"https://openalex.org/I66867065","display_name":"East China Normal University","ror":"https://ror.org/02n96ep67","country_code":"CN","type":"education","lineage":["https://openalex.org/I66867065"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Jianqiang Ni","raw_affiliation_strings":["Shanghai Key Laboratory of Trustworthy Computing, Software Engineering Institute, East China Normal University, Shanghai, China","Software Engineering Institute, Shanghai Key Laboratory of Trustworthy Computing, East China Normal University, Shanghai, China"],"affiliations":[{"raw_affiliation_string":"Shanghai Key Laboratory of Trustworthy Computing, Software Engineering Institute, East China Normal University, Shanghai, China","institution_ids":["https://openalex.org/I4210139618","https://openalex.org/I66867065"]},{"raw_affiliation_string":"Software Engineering Institute, Shanghai Key Laboratory of Trustworthy Computing, East China Normal University, Shanghai, China","institution_ids":["https://openalex.org/I4210139618","https://openalex.org/I66867065"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101402498","display_name":"Yingxin Li","orcid":"https://orcid.org/0000-0003-1184-755X"},"institutions":[{"id":"https://openalex.org/I66867065","display_name":"East China Normal University","ror":"https://ror.org/02n96ep67","country_code":"CN","type":"education","lineage":["https://openalex.org/I66867065"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yingxin Li","raw_affiliation_strings":["School of Cryptology, East China Normal University, Shanghai, China"],"affiliations":[{"raw_affiliation_string":"School of Cryptology, East China Normal University, Shanghai, China","institution_ids":["https://openalex.org/I66867065"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028727355","display_name":"Fukang Liu","orcid":"https://orcid.org/0000-0002-0551-580X"},"institutions":[{"id":"https://openalex.org/I4400009020","display_name":"Institute of Science Tokyo","ror":"https://ror.org/05dqf9946","country_code":null,"type":"education","lineage":["https://openalex.org/I4400009020"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Fukang Liu","raw_affiliation_strings":["Institute of Science Tokyo, Tokyo, Japan"],"affiliations":[{"raw_affiliation_string":"Institute of Science Tokyo, Tokyo, Japan","institution_ids":["https://openalex.org/I4400009020"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5068633811","display_name":"Gaoli Wang","orcid":"https://orcid.org/0000-0002-2121-9306"},"institutions":[{"id":"https://openalex.org/I4210139618","display_name":"Shanghai Key Laboratory of Trustworthy Computing","ror":"https://ror.org/030qbr085","country_code":"CN","type":"facility","lineage":["https://openalex.org/I4210139618"]},{"id":"https://openalex.org/I66867065","display_name":"East China Normal University","ror":"https://ror.org/02n96ep67","country_code":"CN","type":"education","lineage":["https://openalex.org/I66867065"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Gaoli Wang","raw_affiliation_strings":["Shanghai Key Laboratory of Trustworthy Computing, Software Engineering Institute, East China Normal University, Shanghai, China","Software Engineering Institute, Shanghai Key Laboratory of Trustworthy Computing, East China Normal University, Shanghai, China"],"affiliations":[{"raw_affiliation_string":"Shanghai Key Laboratory of Trustworthy Computing, Software Engineering Institute, East China Normal University, Shanghai, China","institution_ids":["https://openalex.org/I4210139618","https://openalex.org/I66867065"]},{"raw_affiliation_string":"Software Engineering Institute, Shanghai Key Laboratory of Trustworthy Computing, East China Normal University, Shanghai, China","institution_ids":["https://openalex.org/I4210139618","https://openalex.org/I66867065"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5073787442"],"corresponding_institution_ids":["https://openalex.org/I4210139618","https://openalex.org/I66867065"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.29073096,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"71","issue":"12","first_page":"9732","last_page":"9752"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11005","display_name":"Radiation Effects in Electronics","score":0.8870000243186951,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11005","display_name":"Radiation Effects in Electronics","score":0.8870000243186951,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11176","display_name":"Radiation Therapy and Dosimetry","score":0.8371999859809875,"subfield":{"id":"https://openalex.org/subfields/2740","display_name":"Pulmonary and Respiratory Medicine"},"field":{"id":"https://openalex.org/fields/27","display_name":"Medicine"},"domain":{"id":"https://openalex.org/domains/4","display_name":"Health Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.7688000202178955,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/collision-attack","display_name":"Collision attack","score":0.8348000049591064},{"id":"https://openalex.org/keywords/collision","display_name":"Collision","score":0.7674999833106995},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.746399998664856},{"id":"https://openalex.org/keywords/hash-function","display_name":"Hash function","score":0.5794000029563904},{"id":"https://openalex.org/keywords/plaintext","display_name":"Plaintext","score":0.4641999900341034},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.4571000039577484},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.447299987077713},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4392000138759613}],"concepts":[{"id":"https://openalex.org/C87538441","wikidata":"https://www.wikidata.org/wiki/Q389463","display_name":"Collision attack","level":5,"score":0.8348000049591064},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7689999938011169},{"id":"https://openalex.org/C121704057","wikidata":"https://www.wikidata.org/wiki/Q352070","display_name":"Collision","level":2,"score":0.7674999833106995},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.746399998664856},{"id":"https://openalex.org/C99138194","wikidata":"https://www.wikidata.org/wiki/Q183427","display_name":"Hash function","level":2,"score":0.5794000029563904},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4957999885082245},{"id":"https://openalex.org/C92717368","wikidata":"https://www.wikidata.org/wiki/Q1162538","display_name":"Plaintext","level":3,"score":0.4641999900341034},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.4571000039577484},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.447299987077713},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4392000138759613},{"id":"https://openalex.org/C94520183","wikidata":"https://www.wikidata.org/wiki/Q190746","display_name":"Advanced Encryption Standard","level":3,"score":0.4072999954223633},{"id":"https://openalex.org/C65302260","wikidata":"https://www.wikidata.org/wiki/Q327675","display_name":"Symmetric-key algorithm","level":4,"score":0.40070000290870667},{"id":"https://openalex.org/C181149355","wikidata":"https://www.wikidata.org/wiki/Q897511","display_name":"Cryptanalysis","level":3,"score":0.39010000228881836},{"id":"https://openalex.org/C207468940","wikidata":"https://www.wikidata.org/wiki/Q869370","display_name":"Brute-force attack","level":3,"score":0.38429999351501465},{"id":"https://openalex.org/C122760801","wikidata":"https://www.wikidata.org/wiki/Q2552011","display_name":"Watermarking attack","level":5,"score":0.37439998984336853},{"id":"https://openalex.org/C93226319","wikidata":"https://www.wikidata.org/wiki/Q193137","display_name":"Differential (mechanical device)","level":2,"score":0.36070001125335693},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.3544999957084656},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.32829999923706055},{"id":"https://openalex.org/C2780864053","wikidata":"https://www.wikidata.org/wiki/Q5147495","display_name":"Collision avoidance","level":3,"score":0.3122999966144562},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.28279998898506165},{"id":"https://openalex.org/C89694405","wikidata":"https://www.wikidata.org/wiki/Q7540343","display_name":"Slide attack","level":5,"score":0.28110000491142273},{"id":"https://openalex.org/C47750902","wikidata":"https://www.wikidata.org/wiki/Q1557574","display_name":"Key size","level":4,"score":0.2800999879837036},{"id":"https://openalex.org/C141492731","wikidata":"https://www.wikidata.org/wiki/Q1052621","display_name":"Message authentication code","level":3,"score":0.2648000121116638},{"id":"https://openalex.org/C28420585","wikidata":"https://www.wikidata.org/wiki/Q2665075","display_name":"Timing attack","level":4,"score":0.25200000405311584}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tit.2025.3623726","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tit.2025.3623726","pdf_url":null,"source":{"id":"https://openalex.org/S4502562","display_name":"IEEE Transactions on Information Theory","issn_l":"0018-9448","issn":["0018-9448","1557-9654"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Theory","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G2273281965","display_name":null,"funder_award_id":"Nos. 62472172","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4559370563","display_name":null,"funder_award_id":"Nos. 62072181","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4718534038","display_name":null,"funder_award_id":"2022YFB2701900","funder_id":"https://openalex.org/F4320335777","funder_display_name":"National Key Research and Development Program of China"},{"id":"https://openalex.org/G4896272386","display_name":null,"funder_award_id":"62472172","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G5858940036","display_name":null,"funder_award_id":"Nos. 62202017","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G8447102269","display_name":null,"funder_award_id":"40500-20104-222609","funder_id":"https://openalex.org/F4320335787","funder_display_name":"Fundamental Research Funds for the Central Universities"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null},{"id":"https://openalex.org/F4320335787","display_name":"Fundamental Research Funds for the Central Universities","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":35,"referenced_works":["https://openalex.org/W25119858","https://openalex.org/W160733659","https://openalex.org/W170950682","https://openalex.org/W1410816365","https://openalex.org/W1433390310","https://openalex.org/W1483908684","https://openalex.org/W1542626544","https://openalex.org/W1546907539","https://openalex.org/W1547537489","https://openalex.org/W1549228503","https://openalex.org/W1566345534","https://openalex.org/W1568559070","https://openalex.org/W1586548249","https://openalex.org/W1603433154","https://openalex.org/W1754198554","https://openalex.org/W1871494460","https://openalex.org/W1886859749","https://openalex.org/W1958084802","https://openalex.org/W1965262782","https://openalex.org/W2100609826","https://openalex.org/W2117062458","https://openalex.org/W2136320902","https://openalex.org/W2252401345","https://openalex.org/W2478623051","https://openalex.org/W2570570094","https://openalex.org/W2916086000","https://openalex.org/W3013100524","https://openalex.org/W3146780285","https://openalex.org/W4312301050","https://openalex.org/W4324139578","https://openalex.org/W4389648876","https://openalex.org/W4392358714","https://openalex.org/W4399805199","https://openalex.org/W4405144451","https://openalex.org/W4414549548"],"related_works":[],"abstract_inverted_index":{"The":[0],"key":[1,33,35,90,132],"collision":[2,36,61,65,91,133],"attack":[3,81,143,180,194,201,222],"was":[4],"proposed":[5,144],"as":[6,159],"an":[7,99],"open":[8],"problem":[9],"in":[10,13,114,128,150],"key-committing":[11],"security":[12],"Authenticated":[14],"Encryption":[15],"(AE)":[16],"schemes":[17],"like":[18],"AES-GCM":[19],"and":[20,53,63,117,195,214,233],"ChaCha20Poly1305.":[21],"In":[22,73],"ASIACRYPT":[23],"2024,":[24],"Taiyama":[25,146],"et":[26,147],"al.":[27,148],"introduce":[28],"a":[29,78,84,152,177,185,219],"novel":[30],"type":[31],"of":[32],"collision\u2014target-plaintext":[34],"(TPKC)":[37],"for":[38,103,189,231],"AES.":[39],"Depending":[40],"on":[41,67,236],"whether":[42],"the":[43,68,112,115,121,139,190,197],"plaintext":[44],"is":[45,157],"fixed,":[46],"TPKC":[47],"can":[48,56],"be":[49,57,125],"divided":[50],"into":[51,60],"fixed-TPKC":[52,142,160,193,200,209,234],"free-TPKC,":[54],"which":[55],"directly":[58,126],"converted":[59],"attacks":[62,66,92,161,210,235],"semi-free-start":[64],"Davies-Meyer":[69],"(DM)":[70],"hashing":[71],"mode.":[72],"this":[74],"paper,":[75],"we":[76,182,206,227],"propose":[77],"new":[79,178,186],"rebound":[80,179],"framework":[82],"leveraging":[83],"time-memory":[85],"tradeoff":[86],"strategy,":[87],"enabling":[88],"practical":[89,199,208,220],"with":[93,176,218],"optimized":[94],"complexity.":[95],"We":[96],"also":[97],"present":[98,207],"improved":[100,173],"automatic":[101,174],"method":[102,175],"finding":[104],"<italic":[105,129],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[106,130],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">rebound-friendly</i>":[107],"differential":[108,187],"characteristics":[109,123],"by":[110,145],"controlling":[111],"probabilities":[113],"inbound":[116],"outbound":[118],"phases,":[119],"allowing":[120],"identified":[122],"to":[124],"used":[127],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">rebound-based</i>":[131],"attacks.":[134],"Our":[135],"analysis":[136],"reveals":[137],"that":[138],"2-round":[140,191,203],"AES-128":[141,192],"is,":[149],"fact,":[151],"free-TPKC":[153,168,221,232],"attack.":[154],"This":[155],"distinction":[156],"significant,":[158],"are":[162],"substantially":[163],"more":[164],"difficult":[165],"than":[166],"their":[167],"counterparts.":[169],"By":[170],"integrating":[171],"our":[172],"framework,":[181],"successfully":[183],"identify":[184],"characteristic":[188],"develope":[196],"first":[198],"against":[202,211,223],"AES-128.":[204],"Additionally,":[205],"5-round":[212],"AES-192":[213],"3-round":[215],"Kiasu-BC,":[216],"along":[217],"6-round":[224],"Kiasu-BC.":[225],"Furthermore,":[226],"reduce":[228],"time":[229],"complexities":[230],"other":[237],"AES":[238],"variants.":[239]},"counts_by_year":[],"updated_date":"2026-04-09T08:11:56.329763","created_date":"2025-10-21T00:00:00"}