{"id":"https://openalex.org/W2807584723","doi":"https://doi.org/10.13154/tosc.v2018.i2.161-191","title":"Cryptanalysis of AES-PRF and Its Dual","display_name":"Cryptanalysis of AES-PRF and Its Dual","publication_year":2018,"publication_date":"2018-06-06","ids":{"openalex":"https://openalex.org/W2807584723","doi":"https://doi.org/10.13154/tosc.v2018.i2.161-191","mag":"2807584723"},"language":"en","primary_location":{"id":"pmh:oai:HAL:hal-02166683v1","is_oa":true,"landing_page_url":"https://hal.science/hal-02166683","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://tosc.iacr.org/index.php/ToSC/index","raw_type":"Journal articles"},"type":"preprint","indexed_in":["datacite","doaj"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://hal.science/hal-02166683","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5032717354","display_name":"Patrick Derbez","orcid":"https://orcid.org/0000-0003-0478-8483"},"institutions":[{"id":"https://openalex.org/I4210132990","display_name":"State Key Laboratory of Cryptology","ror":"https://ror.org/02pn5rj08","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210132990"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Derbez, Patrick","raw_affiliation_strings":["EMbedded SEcurity and Cryptography"],"affiliations":[{"raw_affiliation_string":"EMbedded SEcurity and Cryptography","institution_ids":["https://openalex.org/I4210132990"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038639314","display_name":"Tetsu Iwata","orcid":"https://orcid.org/0000-0002-4729-0979"},"institutions":[{"id":"https://openalex.org/I60134161","display_name":"Nagoya University","ror":"https://ror.org/04chrp450","country_code":"JP","type":"education","lineage":["https://openalex.org/I60134161"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Iwata, Tetsu","raw_affiliation_strings":["Nagoya University"],"affiliations":[{"raw_affiliation_string":"Nagoya University","institution_ids":["https://openalex.org/I60134161"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5059481670","display_name":"L. Sun","orcid":"https://orcid.org/0000-0001-7959-892X"},"institutions":[{"id":"https://openalex.org/I154099455","display_name":"Shandong University","ror":"https://ror.org/0207yh398","country_code":"CN","type":"education","lineage":["https://openalex.org/I154099455"]},{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["CN","SG"],"is_corresponding":false,"raw_author_name":"Sun, Ling","raw_affiliation_strings":["Shandong University","Nanyang Technological University [Singapour]"],"affiliations":[{"raw_affiliation_string":"Shandong University","institution_ids":["https://openalex.org/I154099455"]},{"raw_affiliation_string":"Nanyang Technological University [Singapour]","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026273868","display_name":"Yosuke Todo","orcid":"https://orcid.org/0000-0002-6839-4777"},"institutions":[{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"government","lineage":["https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Todo, Yosuke","raw_affiliation_strings":["Chinese Academy of Sciences [Beijing]"],"affiliations":[{"raw_affiliation_string":"Chinese Academy of Sciences [Beijing]","institution_ids":["https://openalex.org/I19820366"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100741710","display_name":"Haoyang Wang","orcid":"https://orcid.org/0009-0005-0090-8101"},"institutions":[{"id":"https://openalex.org/I2251713219","display_name":"NTT (Japan)","ror":"https://ror.org/00berct97","country_code":"JP","type":"company","lineage":["https://openalex.org/I2251713219"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Wang, Haoyang","raw_affiliation_strings":["NTT Secure Platform Laboratories [Tokyo]"],"affiliations":[{"raw_affiliation_string":"NTT Secure Platform Laboratories [Tokyo]","institution_ids":["https://openalex.org/I2251713219"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5048972311","display_name":"Meiqin Wang","orcid":"https://orcid.org/0000-0003-1580-6544"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Wang, Meiqin","raw_affiliation_strings":["Nanyang Technological University [Singapour]"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University [Singapour]","institution_ids":["https://openalex.org/I172675005"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5032717354"],"corresponding_institution_ids":["https://openalex.org/I4210132990"],"apc_list":null,"apc_paid":null,"fwci":0.3384,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.67795796,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":93,"max":95},"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9933000206947327,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13182","display_name":"Quantum-Dot Cellular Automata","score":0.992900013923645,"subfield":{"id":"https://openalex.org/subfields/1703","display_name":"Computational Theory and Mathematics"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5148240923881531},{"id":"https://openalex.org/keywords/advanced-encryption-standard","display_name":"Advanced Encryption Standard","score":0.46180835366249084},{"id":"https://openalex.org/keywords/s-box","display_name":"S-box","score":0.42976847290992737},{"id":"https://openalex.org/keywords/pseudorandom-function-family","display_name":"Pseudorandom function family","score":0.4263017773628235},{"id":"https://openalex.org/keywords/differential","display_name":"Differential (mechanical device)","score":0.4256761074066162},{"id":"https://openalex.org/keywords/arithmetic","display_name":"Arithmetic","score":0.4223068654537201},{"id":"https://openalex.org/keywords/state","display_name":"State (computer science)","score":0.4146178364753723},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.37071317434310913},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.3569519519805908},{"id":"https://openalex.org/keywords/pseudorandom-number-generator","display_name":"Pseudorandom number generator","score":0.2971445918083191},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.2264794409275055},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.19569867849349976},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.10334166884422302}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5148240923881531},{"id":"https://openalex.org/C94520183","wikidata":"https://www.wikidata.org/wiki/Q190746","display_name":"Advanced Encryption Standard","level":3,"score":0.46180835366249084},{"id":"https://openalex.org/C45737032","wikidata":"https://www.wikidata.org/wiki/Q748364","display_name":"S-box","level":4,"score":0.42976847290992737},{"id":"https://openalex.org/C178774983","wikidata":"https://www.wikidata.org/wiki/Q734896","display_name":"Pseudorandom function family","level":3,"score":0.4263017773628235},{"id":"https://openalex.org/C93226319","wikidata":"https://www.wikidata.org/wiki/Q193137","display_name":"Differential (mechanical device)","level":2,"score":0.4256761074066162},{"id":"https://openalex.org/C94375191","wikidata":"https://www.wikidata.org/wiki/Q11205","display_name":"Arithmetic","level":1,"score":0.4223068654537201},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.4146178364753723},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.37071317434310913},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.3569519519805908},{"id":"https://openalex.org/C140642157","wikidata":"https://www.wikidata.org/wiki/Q1623338","display_name":"Pseudorandom number generator","level":2,"score":0.2971445918083191},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.2264794409275055},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.19569867849349976},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.10334166884422302},{"id":"https://openalex.org/C97355855","wikidata":"https://www.wikidata.org/wiki/Q11473","display_name":"Thermodynamics","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"pmh:oai:HAL:hal-02166683v1","is_oa":true,"landing_page_url":"https://hal.science/hal-02166683","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://tosc.iacr.org/index.php/ToSC/index","raw_type":"Journal articles"},{"id":"pmh:oai:doaj.org/article:953cc859bd044065b7012dde3fec8580","is_oa":true,"landing_page_url":"https://doaj.org/article/953cc859bd044065b7012dde3fec8580","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, Pp 161-191 (2018)","raw_type":"article"},{"id":"pmh:oai:dr.ntu.edu.sg:10356/104039","is_oa":false,"landing_page_url":"https://hdl.handle.net/10356/104039","pdf_url":null,"source":{"id":"https://openalex.org/S4306402609","display_name":"DR-NTU (Nanyang Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I172675005","host_organization_name":"Nanyang Technological University","host_organization_lineage":["https://openalex.org/I172675005"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Journal Article"},{"id":"doi:10.13154/tosc.v2018.i2.161-191","is_oa":true,"landing_page_url":"https://doi.org/10.13154/tosc.v2018.i2.161-191","pdf_url":null,"source":{"id":"https://openalex.org/S7407052971","display_name":"UB Bochum","issn_l":null,"issn":[],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-02166683v1","is_oa":true,"landing_page_url":"https://hal.science/hal-02166683","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://tosc.iacr.org/index.php/ToSC/index","raw_type":"Journal articles"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2786303832","https://openalex.org/W2059218952","https://openalex.org/W2376611979","https://openalex.org/W2890717930","https://openalex.org/W4253256042","https://openalex.org/W2363818505","https://openalex.org/W4399487526","https://openalex.org/W174876373","https://openalex.org/W2185225898","https://openalex.org/W2145838615"],"abstract_inverted_index":{"A":[0],"dedicated":[1],"pseudorandom":[2],"function":[3],"(PRF)":[4],"called":[5],"AES-PRF":[6,20,47,127,158],"was":[7],"proposed":[8],"by":[9,25,164],"Mennink":[10],"and":[11,48,113,120,143,170],"Neves":[12],"at":[13],"FSE":[14],"2018":[15],"(ToSC":[16],"2017,":[17],"Issue":[18],"3).":[19],"is":[21,63,84,128,145],"obtained":[22],"from":[23],"AES":[24],"using":[26],"the":[27,30,34,37,57,60,66,71,77,81,87,90,93,160,165,176],"output":[28,38,58,91],"of":[29,46,59,73,76,92],"5-th":[31],"round":[32,62,122],"as":[33,65,86],"feed-forward":[35,88],"to":[36,89,140,179],"state.":[39],"This":[40],"paper":[41],"presents":[42],"extensive":[43],"security":[44,72,162],"analysis":[45],"its":[49,180],"variants.":[50],"Specifically,":[51],"we":[52],"consider":[53],"unbalanced":[54,78],"variants":[55],"where":[56,80],"s-th":[61,94],"used":[64,85],"feed-forward.":[67],"We":[68,96,124],"also":[69],"analyze":[70],"\u201cdual\u201d":[74],"constructions":[75],"variants,":[79],"input":[82],"state":[83],"round.":[95],"apply":[97],"an":[98],"impossible":[99],"differential":[100,106],"attack,":[101,104,107],"zero-correlation":[102],"linear":[103,110],"traditional":[105],"zero":[108],"correlation":[109],"distinguishing":[111],"attack":[112,116],"a":[114],"meet-in-the-middle":[115],"on":[117,157,173],"these":[118],"PRFs":[119],"reduced":[121,139],"versions.":[123],"show":[125],"that":[126],"broken":[129,146],"whenever":[130,147],"s":[131,135,148,152],"\u2264":[132,149],"2":[133],"or":[134,138,151],"\u2265":[136,153],"6,":[137],"7":[141],"rounds,":[142],"Dual-AES-PRF":[144,174],"4":[150],"8.":[154],"Our":[155],"results":[156,172],"improve":[159],"initial":[161],"evaluation":[163],"designers":[166],"in":[167],"various":[168],"ways,":[169],"our":[171],"give":[175],"first":[177],"insight":[178],"security.":[181]},"counts_by_year":[{"year":2021,"cited_by_count":2}],"updated_date":"2026-03-25T23:56:10.502304","created_date":"2018-06-13T00:00:00"}