{"id":"https://openalex.org/W3200082646","doi":"https://doi.org/10.46586/tosc.v2021.i3.102-136","title":"Exploring Differential-Based Distinguishers and Forgeries for ASCON","display_name":"Exploring Differential-Based Distinguishers and Forgeries for ASCON","publication_year":2021,"publication_date":"2021-09-17","ids":{"openalex":"https://openalex.org/W3200082646","doi":"https://doi.org/10.46586/tosc.v2021.i3.102-136","mag":"3200082646"},"language":"en","primary_location":{"id":"doi:10.46586/tosc.v2021.i3.102-136","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2021.i3.102-136","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9176/8714","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9176/8714","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5048652347","display_name":"David G\u00e9rault","orcid":"https://orcid.org/0000-0001-8583-0668"},"institutions":[{"id":"https://openalex.org/I28290843","display_name":"University of Surrey","ror":"https://ror.org/00ks66431","country_code":"GB","type":"education","lineage":["https://openalex.org/I28290843"]},{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["GB","SG"],"is_corresponding":true,"raw_author_name":"David Gerault","raw_affiliation_strings":["Nanyang Technological University, Singapore, Singapore; University of Surrey, Guildford, United Kingdom","Nanyang Technological University, Singapore, Singapore","University of Surrey, Guildford, United Kingdom"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore, Singapore; University of Surrey, Guildford, United Kingdom","institution_ids":["https://openalex.org/I172675005"]},{"raw_affiliation_string":"Nanyang Technological University, Singapore, Singapore","institution_ids":["https://openalex.org/I172675005"]},{"raw_affiliation_string":"University of Surrey, Guildford, United Kingdom","institution_ids":["https://openalex.org/I28290843"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012053340","display_name":"Thomas Peyrin","orcid":"https://orcid.org/0000-0002-2690-9197"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Thomas Peyrin","raw_affiliation_strings":["Nanyang Technological University, Singapore, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5052462411","display_name":"Quan Quan Tan","orcid":"https://orcid.org/0000-0002-6294-3894"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Quan Quan Tan","raw_affiliation_strings":["Nanyang Technological University, Singapore, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore, Singapore","institution_ids":["https://openalex.org/I172675005"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5048652347"],"corresponding_institution_ids":["https://openalex.org/I172675005","https://openalex.org/I28290843"],"apc_list":null,"apc_paid":null,"fwci":3.2634,"has_fulltext":true,"cited_by_count":29,"citation_normalized_percentile":{"value":0.93310889,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"102","last_page":"136"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/permutation","display_name":"Permutation (music)","score":0.703603982925415},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.674026608467102},{"id":"https://openalex.org/keywords/differential","display_name":"Differential (mechanical device)","score":0.5843230485916138},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4994816780090332},{"id":"https://openalex.org/keywords/cryptographic-primitive","display_name":"Cryptographic primitive","score":0.46297213435173035},{"id":"https://openalex.org/keywords/heuristics","display_name":"Heuristics","score":0.4601458013057709},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.4455479085445404},{"id":"https://openalex.org/keywords/cryptanalysis","display_name":"Cryptanalysis","score":0.4185100793838501},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.4104193449020386},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.38546186685562134},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.377249151468277},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.11216485500335693}],"concepts":[{"id":"https://openalex.org/C21308566","wikidata":"https://www.wikidata.org/wiki/Q7169365","display_name":"Permutation (music)","level":2,"score":0.703603982925415},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.674026608467102},{"id":"https://openalex.org/C93226319","wikidata":"https://www.wikidata.org/wiki/Q193137","display_name":"Differential (mechanical device)","level":2,"score":0.5843230485916138},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4994816780090332},{"id":"https://openalex.org/C15927051","wikidata":"https://www.wikidata.org/wiki/Q246593","display_name":"Cryptographic primitive","level":4,"score":0.46297213435173035},{"id":"https://openalex.org/C127705205","wikidata":"https://www.wikidata.org/wiki/Q5748245","display_name":"Heuristics","level":2,"score":0.4601458013057709},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.4455479085445404},{"id":"https://openalex.org/C181149355","wikidata":"https://www.wikidata.org/wiki/Q897511","display_name":"Cryptanalysis","level":3,"score":0.4185100793838501},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.4104193449020386},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.38546186685562134},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.377249151468277},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.11216485500335693},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C24890656","wikidata":"https://www.wikidata.org/wiki/Q82811","display_name":"Acoustics","level":1,"score":0.0},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.46586/tosc.v2021.i3.102-136","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2021.i3.102-136","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9176/8714","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:a4fbcaf5f0f6458cb12c146a07996513","is_oa":true,"landing_page_url":"https://doaj.org/article/a4fbcaf5f0f6458cb12c146a07996513","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, Vol 2021, Iss 3 (2021)","raw_type":"article"},{"id":"pmh:oai:dr.ntu.edu.sg:10356/162578","is_oa":true,"landing_page_url":"https://hdl.handle.net/10356/162578","pdf_url":null,"source":{"id":"https://openalex.org/S4306402609","display_name":"DR-NTU (Nanyang Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I172675005","host_organization_name":"Nanyang Technological University","host_organization_lineage":["https://openalex.org/I172675005"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Journal Article"}],"best_oa_location":{"id":"doi:10.46586/tosc.v2021.i3.102-136","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2021.i3.102-136","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9176/8714","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.5699999928474426,"display_name":"Quality Education","id":"https://metadata.un.org/sdg/4"}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3200082646.pdf","grobid_xml":"https://content.openalex.org/works/W3200082646.grobid-xml"},"referenced_works_count":34,"referenced_works":["https://openalex.org/W37385681","https://openalex.org/W197228877","https://openalex.org/W1433390310","https://openalex.org/W1483908684","https://openalex.org/W1495653136","https://openalex.org/W1540066842","https://openalex.org/W1597699498","https://openalex.org/W1629301835","https://openalex.org/W1754198554","https://openalex.org/W1883151075","https://openalex.org/W1948713329","https://openalex.org/W2058289418","https://openalex.org/W2101800793","https://openalex.org/W2127005917","https://openalex.org/W2159875930","https://openalex.org/W2166473670","https://openalex.org/W2238818043","https://openalex.org/W2344976035","https://openalex.org/W2400544867","https://openalex.org/W2425922656","https://openalex.org/W2562655613","https://openalex.org/W2604948401","https://openalex.org/W2792916270","https://openalex.org/W2824860271","https://openalex.org/W2910049226","https://openalex.org/W2951970208","https://openalex.org/W2969001071","https://openalex.org/W2981623187","https://openalex.org/W2982481869","https://openalex.org/W3088704016","https://openalex.org/W3148977311","https://openalex.org/W3210705930","https://openalex.org/W4241072010","https://openalex.org/W4367554654"],"related_works":["https://openalex.org/W4200264546","https://openalex.org/W2076024987","https://openalex.org/W1508286731","https://openalex.org/W2921203182","https://openalex.org/W166555354","https://openalex.org/W2466025230","https://openalex.org/W3181046698","https://openalex.org/W1839656894","https://openalex.org/W4285246995","https://openalex.org/W3200082646"],"abstract_inverted_index":{"Automated":[0],"methods":[1,32],"have":[2,220,248],"become":[3],"crucial":[4],"components":[5],"when":[6],"searching":[7],"for":[8,50,85,89,148,158,203,250],"distinguishers":[9,147,174,195,202],"against":[10,224],"symmetric-key":[11],"cryptographic":[12],"primitives.":[13],"While":[14],"MILP":[15],"and":[16,28,67,75,152,155,160,177,206,228],"SAT":[17],"solvers":[18],"are":[19,37,185],"among":[20],"the":[21,44,54,62,71,97,104,109,131,142,164,173,199,210,232,237,243],"most":[22],"popular":[23],"tools":[24],"to":[25,120,136,179],"model":[26],"ciphers":[27],"perform":[29],"cryptanalysis,":[30],"other":[31,138],"with":[33,91,141],"different":[34,189],"performance":[35],"profiles":[36],"appearing.":[38],"In":[39],"this":[40],"article,":[41],"we":[42,128,219,247,253],"explore":[43],"use":[45],"of":[46,61,70,111,144,163,172,212,239],"Constraint":[47],"Programming":[48],"(CP)":[49],"differential":[51,87,99,117,139,245],"cryptanalysis":[52],"on":[53,125,260],"Ascon":[55,90,105,165],"authenticated":[56],"encryption":[57],"family":[58],"(first":[59],"choice":[60],"CAESAR":[63],"lightweight":[64],"applications":[65],"portfolio":[66],"current":[68],"finalist":[69],"NIST":[72],"LWC":[73],"competition)":[74],"its":[76],"internal":[77,166],"permutation.":[78,167],"We":[79,168,191],"first":[80],"present":[81],"a":[82,170,257],"search":[83,122,132],"methodology":[84],"finding":[86],"characteristics":[88,100,140],"CP,":[92],"which":[93,196],"can":[94],"easily":[95,115],"find":[96],"best":[98,200,233,244],"already":[101],"reported":[102,234],"by":[103],"designers.":[106],"This":[107],"shows":[108],"capability":[110],"CP":[112,135],"in":[113,134,188],"generating":[114],"good":[116],"results":[118,235],"compared":[119],"dedicated":[121],"heuristics.":[123],"Based":[124],"our":[126,217],"tool,":[127,218],"also":[129,192,255],"parametrize":[130],"strategies":[133],"generate":[137],"goal":[143],"forming":[145],"limited-birthday":[146,194],"4,":[149,204],"5,":[150],"6":[151,207],"7":[153],"rounds":[154,162,208],"rectangle":[156],"attacks":[157,223],"4":[159],"5":[161,205],"propose":[169],"categorization":[171],"into":[175],"black-box":[176],"non-black-box":[178,213],"better":[180],"differentiate":[181],"them":[182],"as":[183],"they":[184],"often":[186],"useful":[187],"contexts.":[190],"obtained":[193],"represent":[197],"currently":[198],"known":[201],"under":[209],"category":[211],"distinguishers.":[214],"Leveraging":[215],"again":[216],"generated":[221],"forgery":[222],"both":[225],"reduced-rounds":[226],"Ascon-128":[227],"Ascon-128a,":[229],"improving":[230],"over":[231],"at":[236],"time":[238],"writing.":[240],"Finally,":[241],"using":[242],"characteristic":[246],"found":[249],"2":[251],"rounds,":[252],"could":[254],"improve":[256],"recent":[258],"attack":[259],"round-reduced":[261],"Ascon-Hash.":[262]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":11},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}