{"id":"https://openalex.org/W4295066888","doi":"https://doi.org/10.46586/tosc.v2022.i3.303-340","title":"Towards Tight Differential Bounds of Ascon","display_name":"Towards Tight Differential Bounds of Ascon","publication_year":2022,"publication_date":"2022-09-09","ids":{"openalex":"https://openalex.org/W4295066888","doi":"https://doi.org/10.46586/tosc.v2022.i3.303-340"},"language":"en","primary_location":{"id":"doi:10.46586/tosc.v2022.i3.303-340","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2022.i3.303-340","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9859/9358","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9859/9358","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5075496360","display_name":"Rusydi H. Makarim","orcid":"https://orcid.org/0000-0002-3234-4399"},"institutions":[{"id":"https://openalex.org/I4210087059","display_name":"Technology Innovation Institute","ror":"https://ror.org/001kv2y39","country_code":"AE","type":"facility","lineage":["https://openalex.org/I4210087059"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Rusydi H. Makarim","raw_affiliation_strings":["Cryptography Research Centre, Technology Innovation Institute, Abu Dhabi, United Arab Emirates"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Cryptography Research Centre, Technology Innovation Institute, Abu Dhabi, United Arab Emirates","institution_ids":["https://openalex.org/I4210087059"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5071239703","display_name":"Raghvendra Rohit","orcid":null},"institutions":[{"id":"https://openalex.org/I4210087059","display_name":"Technology Innovation Institute","ror":"https://ror.org/001kv2y39","country_code":"AE","type":"facility","lineage":["https://openalex.org/I4210087059"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Raghvendra Rohit","raw_affiliation_strings":["Cryptography Research Centre, Technology Innovation Institute, Abu Dhabi, United Arab Emirates"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Cryptography Research Centre, Technology Innovation Institute, Abu Dhabi, United Arab Emirates","institution_ids":["https://openalex.org/I4210087059"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.3873,"has_fulltext":true,"cited_by_count":12,"citation_normalized_percentile":{"value":0.84347037,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"303","last_page":"340"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11130","display_name":"Coding theory and cryptography","score":0.9939000010490417,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9916999936103821,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/integer-programming","display_name":"Integer programming","score":0.6106838583946228},{"id":"https://openalex.org/keywords/modulo","display_name":"Modulo","score":0.551480770111084},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.4713905453681946},{"id":"https://openalex.org/keywords/differential","display_name":"Differential (mechanical device)","score":0.4641495943069458},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4377889931201935},{"id":"https://openalex.org/keywords/discrete-mathematics","display_name":"Discrete mathematics","score":0.42198747396469116},{"id":"https://openalex.org/keywords/linear-programming","display_name":"Linear programming","score":0.41603928804397583},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.4046887159347534},{"id":"https://openalex.org/keywords/combinatorics","display_name":"Combinatorics","score":0.3648991286754608},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.3370373249053955},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.09172552824020386}],"concepts":[{"id":"https://openalex.org/C56086750","wikidata":"https://www.wikidata.org/wiki/Q6042592","display_name":"Integer programming","level":2,"score":0.6106838583946228},{"id":"https://openalex.org/C54732982","wikidata":"https://www.wikidata.org/wiki/Q1415345","display_name":"Modulo","level":2,"score":0.551480770111084},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.4713905453681946},{"id":"https://openalex.org/C93226319","wikidata":"https://www.wikidata.org/wiki/Q193137","display_name":"Differential (mechanical device)","level":2,"score":0.4641495943069458},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4377889931201935},{"id":"https://openalex.org/C118615104","wikidata":"https://www.wikidata.org/wiki/Q121416","display_name":"Discrete mathematics","level":1,"score":0.42198747396469116},{"id":"https://openalex.org/C41045048","wikidata":"https://www.wikidata.org/wiki/Q202843","display_name":"Linear programming","level":2,"score":0.41603928804397583},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.4046887159347534},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.3648991286754608},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.3370373249053955},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.09172552824020386},{"id":"https://openalex.org/C97355855","wikidata":"https://www.wikidata.org/wiki/Q11473","display_name":"Thermodynamics","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.46586/tosc.v2022.i3.303-340","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2022.i3.303-340","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9859/9358","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:34e3d7e1ca534200bb11b5e10a2059d2","is_oa":true,"landing_page_url":"https://doaj.org/article/34e3d7e1ca534200bb11b5e10a2059d2","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, Vol 2022, Iss 3 (2022)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.46586/tosc.v2022.i3.303-340","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2022.i3.303-340","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/9859/9358","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Partnerships for the goals","id":"https://metadata.un.org/sdg/17","score":0.4300000071525574}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4295066888.pdf","grobid_xml":"https://content.openalex.org/works/W4295066888.grobid-xml"},"referenced_works_count":28,"referenced_works":["https://openalex.org/W197228877","https://openalex.org/W1553753418","https://openalex.org/W1605798759","https://openalex.org/W1629301835","https://openalex.org/W1632354152","https://openalex.org/W1883151075","https://openalex.org/W2027325533","https://openalex.org/W2076637888","https://openalex.org/W2131384593","https://openalex.org/W2166473670","https://openalex.org/W2562655613","https://openalex.org/W2576186740","https://openalex.org/W2604873466","https://openalex.org/W2604948401","https://openalex.org/W2782859210","https://openalex.org/W2792542066","https://openalex.org/W2885614120","https://openalex.org/W2941076300","https://openalex.org/W3146780285","https://openalex.org/W3148977311","https://openalex.org/W3187429275","https://openalex.org/W3200082646","https://openalex.org/W3215112825","https://openalex.org/W4206301673","https://openalex.org/W4231852103","https://openalex.org/W4241072010","https://openalex.org/W4242655995","https://openalex.org/W4242766192"],"related_works":["https://openalex.org/W2117548279","https://openalex.org/W2097470475","https://openalex.org/W2070252991","https://openalex.org/W2807449856","https://openalex.org/W4285278887","https://openalex.org/W2365237642","https://openalex.org/W2995925505","https://openalex.org/W2773399470","https://openalex.org/W3116484972","https://openalex.org/W2941986668"],"abstract_inverted_index":{"Being":[0],"one":[1],"of":[2,5,12,64,83,133,137,181,273,317,356,369],"the":[3,6,13,19,33,36,62,80,103,131,177,192,261,274,286,289,341,354,367],"winners":[4],"CAESAR":[7],"competition":[8],"and":[9,66,72,115,144,152,160,244,299,306,330,359,362],"a":[10,76,99,206,226,314,332],"finalist":[11],"ongoing":[14],"NIST":[15],"lightweight":[16],"cryptography":[17],"competition,":[18],"authenticated":[20],"encryption":[21],"with":[22,229,326,336],"associated":[23],"data":[24],"algorithm":[25],"Ascon":[26],"has":[27,347],"withstood":[28],"extensive":[29],"security":[30],"evaluation.":[31],"Despite":[32],"substantial":[34],"cryptanalysis,":[35],"tightness":[37,105],"on":[38,61,294],"Ascon\u2019s":[39],"differential":[40,65,171,184,227],"bounds":[41,58],"is":[42,91,130,186,285],"still":[43,92],"not":[44,93],"well-understood":[45],"until":[46],"very":[47],"recently,":[48],"at":[49,148,187,230],"ToSC":[50],"2022,":[51],"Erlacher":[52],"et":[53],"al.":[54],"have":[55],"proven":[56],"lower":[57,263],"(not":[59],"tight)":[60],"number":[63,82],"linear":[67,324,334,345],"active":[68,84,138,146,158,167,203,233,242,295,328],"Sboxes":[69,85,139,147,159,168,243,296,329],"for":[70,79,86,163,169,209,240,255,265,297],"4":[71,87,210,266,298],"6":[73,89],"rounds.":[74,267],"However,":[75],"tight":[77],"bound":[78,264,293],"minimum":[81,193],"\u2212":[88],"rounds":[90,301],"known.In":[94],"this":[95],"paper,":[96],"we":[97,212,320,352],"take":[98],"step":[100],"towards":[101],"solving":[102],"above":[104],"problem":[106],"by":[107,190],"efficiently":[108],"utilizing":[109],"both":[110],"Satisfiability":[111],"Modulo":[112],"Theories":[113],"(SMT)":[114],"Mixed":[116],"Integer":[117],"Linear":[118],"Programming":[119],"(MILP)":[120],"based":[121],"automated":[122],"tools.":[123],"Our":[124,281],"first":[125],"major":[126],"contribution":[127,284],"(using":[128,195],"SMT)":[129],"set":[132],"all":[134],"valid":[135],"configurations":[136,239],"(for":[140],"e.g.,":[141],"1,":[142],"3":[143,219],"11":[145],"round":[149,220],"0,":[150],"1":[151],"2,":[153],"respectively)":[154],"up":[155],"to":[156,165,198,253,259,277,304,309,365],"22":[157],"partial":[161],"sets":[162],"23":[164],"32":[166],"3-round":[170,183],"trails.":[172],"We":[173,235,268],"then":[174],"prove":[175],"that":[176,246],"weight":[178],"(differential":[179],"probability)":[180],"any":[182],"trail":[185,228,335,346],"least":[188],"40":[189],"finding":[191],"weights":[194],"MILP)":[196],"corresponding":[197],"each":[199],"configuration":[200],"till":[201],"19":[202],"Sboxes.":[204,234],"As":[205],"second":[207],"contribution,":[208],"rounds,":[211],"provide":[213,270,353],"several":[214],"necessary":[215],"conditions":[216],"(by":[217],"extending":[218],"trails)":[221],"which":[222],"may":[223],"result":[224],"in":[225,247,257,288],"most":[231],"44":[232,241,303],"find":[236,321],"5":[237,300],"new":[238,322],"show":[245],"total":[248],"there":[249],"are":[250],"9289":[251],"cases":[252],"check":[254],"feasibility":[256],"order":[258],"obtain":[260],"actual":[262,363],"also":[269,331],"an":[271],"estimate":[272],"time":[275],"complexity":[276],"solve":[278],"these":[279],"cases.":[280],"third":[282],"main":[283],"improvement":[287],"7-year":[290],"old":[291],"upper":[292],"from":[302,307],"43":[305,327],"78":[308],"72,":[310],"respectively.":[311],"Moreover,":[312],"as":[313],"direct":[315],"application":[316],"our":[318,357],"approach,":[319],"4-round":[323],"trails":[325,364],"5-round":[333],"squared":[337,348],"correlation":[338,349],"2\u2212184":[339],"while":[340],"previous":[342],"best":[343],"known":[344],"2\u2212186.":[350],"Finally,":[351],"implementations":[355],"SMT":[358],"MILP":[360],"models,":[361],"verify":[366],"correctness":[368],"results.":[370]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":3}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}