{"id":"https://openalex.org/W4386844248","doi":"https://doi.org/10.46586/tosc.v2023.i3.146-183","title":"Simplified Modeling of MITM Attacks for Block Ciphers: New (Quantum) Attacks","display_name":"Simplified Modeling of MITM Attacks for Block Ciphers: New (Quantum) Attacks","publication_year":2023,"publication_date":"2023-09-19","ids":{"openalex":"https://openalex.org/W4386844248","doi":"https://doi.org/10.46586/tosc.v2023.i3.146-183"},"language":"en","primary_location":{"id":"doi:10.46586/tosc.v2023.i3.146-183","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2023.i3.146-183","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/11187/10629","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://tosc.iacr.org/index.php/ToSC/article/download/11187/10629","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071570125","display_name":"Andr\u00e9 Schrottenloher","orcid":"https://orcid.org/0000-0002-1329-8630"},"institutions":[{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"government","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I2802519937","display_name":"Institut de Recherche en Informatique et Syst\u00e8mes Al\u00e9atoires","ror":"https://ror.org/00myn0z94","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I205703379","https://openalex.org/I2802204017","https://openalex.org/I2802519937","https://openalex.org/I28221208","https://openalex.org/I4210127572","https://openalex.org/I4210159245","https://openalex.org/I56067802"]},{"id":"https://openalex.org/I56067802","display_name":"Universit\u00e9 de Rennes","ror":"https://ror.org/015m7wh34","country_code":"FR","type":"education","lineage":["https://openalex.org/I56067802"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Andr\u00e9 Schrottenloher","raw_affiliation_strings":["Univ Rennes, Inria, Centre National de la Recherche Scientifique (CNRS), Institut de Recherche en Informatique et Syst\u00e8mes Al\u00e9atoires (IRISA), Rennes, France"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Univ Rennes, Inria, Centre National de la Recherche Scientifique (CNRS), Institut de Recherche en Informatique et Syst\u00e8mes Al\u00e9atoires (IRISA), Rennes, France","institution_ids":["https://openalex.org/I2802519937","https://openalex.org/I56067802","https://openalex.org/I1294671590"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5042597739","display_name":"Marc Stevens","orcid":"https://orcid.org/0000-0002-7091-2924"},"institutions":[{"id":"https://openalex.org/I1341640284","display_name":"Centrum Wiskunde & Informatica","ror":"https://ror.org/00x7ekv49","country_code":"NL","type":"facility","lineage":["https://openalex.org/I1341640284","https://openalex.org/I2800991832","https://openalex.org/I4405262988"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Marc Stevens","raw_affiliation_strings":["Cryptology Group, Centrum Wiskunde Informatica (CWI), Amsterdam, The Netherlands"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Cryptology Group, Centrum Wiskunde Informatica (CWI), Amsterdam, The Netherlands","institution_ids":["https://openalex.org/I1341640284"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.9561,"has_fulltext":true,"cited_by_count":12,"citation_normalized_percentile":{"value":0.89035209,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"146","last_page":"183"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11130","display_name":"Coding theory and cryptography","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.7362831830978394},{"id":"https://openalex.org/keywords/key-schedule","display_name":"Key schedule","score":0.733634352684021},{"id":"https://openalex.org/keywords/man-in-the-middle-attack","display_name":"Man-in-the-middle attack","score":0.7163618206977844},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6706893444061279},{"id":"https://openalex.org/keywords/hash-function","display_name":"Hash function","score":0.6526101231575012},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4588611125946045},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.4280291199684143},{"id":"https://openalex.org/keywords/block-size","display_name":"Block size","score":0.4169617295265198},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3235936164855957},{"id":"https://openalex.org/keywords/differential-cryptanalysis","display_name":"Differential cryptanalysis","score":0.2626253366470337},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.2349816858768463},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.23472309112548828}],"concepts":[{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.7362831830978394},{"id":"https://openalex.org/C112145980","wikidata":"https://www.wikidata.org/wiki/Q2569509","display_name":"Key schedule","level":5,"score":0.733634352684021},{"id":"https://openalex.org/C196491621","wikidata":"https://www.wikidata.org/wiki/Q554830","display_name":"Man-in-the-middle attack","level":3,"score":0.7163618206977844},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6706893444061279},{"id":"https://openalex.org/C99138194","wikidata":"https://www.wikidata.org/wiki/Q183427","display_name":"Hash function","level":2,"score":0.6526101231575012},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4588611125946045},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.4280291199684143},{"id":"https://openalex.org/C41431624","wikidata":"https://www.wikidata.org/wiki/Q1053357","display_name":"Block size","level":3,"score":0.4169617295265198},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3235936164855957},{"id":"https://openalex.org/C36123800","wikidata":"https://www.wikidata.org/wiki/Q1224471","display_name":"Differential cryptanalysis","level":4,"score":0.2626253366470337},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.2349816858768463},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.23472309112548828}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.46586/tosc.v2023.i3.146-183","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2023.i3.146-183","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/11187/10629","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},{"id":"pmh:oai:HAL:hal-04261017v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-04261017","pdf_url":"https://inria.hal.science/hal-04261017/document","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, 2023, 2023 (3), pp.146-183. ⟨10.46586/tosc.v2023.i3.146-183⟩","raw_type":"Journal articles"},{"id":"pmh:oai:cwi.nl:33375","is_oa":false,"landing_page_url":"https://ir.cwi.nl/pub/33375","pdf_url":null,"source":{"id":"https://openalex.org/S7407055335","display_name":"Centrum Wiskunde & Informatica (CWI), the national research institute for mathematics and computer science in the Netherlands","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology vol. 2023 no. 3, pp. 146-183","raw_type":"info:eu-repo/semantics/article"},{"id":"pmh:oai:doaj.org/article:432c3be60f174d4bb2a29704f7d6f423","is_oa":true,"landing_page_url":"https://doaj.org/article/432c3be60f174d4bb2a29704f7d6f423","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, Vol 2023, Iss 3 (2023)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.46586/tosc.v2023.i3.146-183","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2023.i3.146-183","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/11187/10629","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.4699999988079071,"id":"https://metadata.un.org/sdg/17","display_name":"Partnerships for the goals"}],"awards":[{"id":"https://openalex.org/G368604221","display_name":null,"funder_award_id":"ANR-18-CE39-0007","funder_id":"https://openalex.org/F4320320883","funder_display_name":"Agence Nationale de la Recherche"},{"id":"https://openalex.org/G5463327868","display_name":null,"funder_award_id":"ANR-22-PETQ-0008","funder_id":"https://openalex.org/F4320320883","funder_display_name":"Agence Nationale de la Recherche"},{"id":"https://openalex.org/G6876561401","display_name":null,"funder_award_id":"ANR-18","funder_id":"https://openalex.org/F4320320883","funder_display_name":"Agence Nationale de la Recherche"},{"id":"https://openalex.org/G8138296111","display_name":null,"funder_award_id":"ANR-22-PETQ-0008 PQ-TLS","funder_id":"https://openalex.org/F4320320883","funder_display_name":"Agence Nationale de la Recherche"}],"funders":[{"id":"https://openalex.org/F4320320883","display_name":"Agence Nationale de la Recherche","ror":"https://ror.org/00rbzpz17"}],"has_content":{"grobid_xml":false,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4386844248.pdf"},"referenced_works_count":51,"referenced_works":["https://openalex.org/W41296744","https://openalex.org/W98505615","https://openalex.org/W377755800","https://openalex.org/W1487353416","https://openalex.org/W1513013279","https://openalex.org/W1515595447","https://openalex.org/W1527730705","https://openalex.org/W1552695992","https://openalex.org/W1566855226","https://openalex.org/W1571067952","https://openalex.org/W1587120902","https://openalex.org/W1792392373","https://openalex.org/W1814882979","https://openalex.org/W1894646615","https://openalex.org/W1991374982","https://openalex.org/W2039530785","https://openalex.org/W2084652510","https://openalex.org/W2109766996","https://openalex.org/W2117584890","https://openalex.org/W2121981260","https://openalex.org/W2190250725","https://openalex.org/W2284942299","https://openalex.org/W2308119312","https://openalex.org/W2407639567","https://openalex.org/W2504919933","https://openalex.org/W2757403014","https://openalex.org/W2764347725","https://openalex.org/W2768897317","https://openalex.org/W2884051710","https://openalex.org/W2964038092","https://openalex.org/W2983791085","https://openalex.org/W2991519650","https://openalex.org/W2997556110","https://openalex.org/W2997945825","https://openalex.org/W3022251986","https://openalex.org/W3046609042","https://openalex.org/W3081737099","https://openalex.org/W3099913548","https://openalex.org/W3107017428","https://openalex.org/W3127710836","https://openalex.org/W3176647968","https://openalex.org/W3191136760","https://openalex.org/W3216283216","https://openalex.org/W4249020637","https://openalex.org/W4250498021","https://openalex.org/W4298011438","https://openalex.org/W4312300082","https://openalex.org/W4312345595","https://openalex.org/W4312361177","https://openalex.org/W4365807512","https://openalex.org/W4385654257"],"related_works":["https://openalex.org/W2964609758","https://openalex.org/W2910464690","https://openalex.org/W1513013279","https://openalex.org/W2807501579","https://openalex.org/W3011345142","https://openalex.org/W2199982322","https://openalex.org/W2134038088","https://openalex.org/W2176792445","https://openalex.org/W1607874478","https://openalex.org/W2053700074"],"abstract_inverted_index":{"The":[0,115],"meet-in-the-middle":[1],"(MITM)":[2],"technique":[3],"has":[4,135],"led":[5],"to":[6,31,60,95,106,120],"many":[7],"key-recovery":[8,61],"attacks":[9,15,30,53,62,163],"on":[10,16,45,54,164],"block":[11,109,156],"ciphers":[12,110,130],"and":[13,77,154,158,161],"preimage":[14],"hash":[17,55],"functions.":[18],"Nowadays,":[19],"cryptographers":[20],"use":[21],"automatic":[22],"tools":[23],"that":[24],"reduce":[25],"the":[26,70,102,132,152],"search":[27],"of":[28,125,151],"MITM":[29,52],"an":[32],"optimization":[33],"problem.":[34],"Bao":[35],"et":[36,65],"al.":[37,66],"(EUROCRYPT":[38],"2021)":[39],"introduced":[40],"a":[41,82,122,136],"low-level":[42],"modeling":[43,71,92,105,117],"based":[44],"Mixed":[46],"Integer":[47],"Linear":[48],"Programming":[49],"(MILP)":[50],"for":[51],"functions,":[56],"which":[57],"was":[58,93],"extended":[59],"by":[63],"Dong":[64],"(CRYPTO":[67,79],"2021).":[68],"However,":[69,90],"only":[72],"covers":[73],"AES-like":[74],"designs.":[75],"Schrottenloher":[76],"Stevens":[78],"2022)":[80],"proposed":[81],"different":[83],"approach":[84],"aiming":[85],"at":[86,141],"higher-level":[87],"simplified":[88,104],"models.":[89],"this":[91,98],"limited":[94],"cryptographic":[96],"permutations.In":[97],"paper,":[99],"we":[100],"extend":[101],"latter":[103],"also":[107],"cover":[108],"with":[111],"simple":[112],"key":[113,133],"schedules.":[114],"resulting":[116],"enables":[118],"us":[119],"target":[121],"large":[123],"array":[124],"primitives,":[126],"typically":[127],"lightweight":[128],"SPN":[129],"where":[131],"schedule":[134],"slow":[137],"diffusion,":[138],"or":[139],"none":[140],"all.":[142],"We":[143],"give":[144],"several":[145],"applications":[146],"such":[147],"as":[148],"full":[149],"breaks":[150],"PIPO-256":[153],"FUTURE":[155],"ciphers,":[157],"reduced-round":[159],"classical":[160],"quantum":[162],"SATURNIN-Hash.":[165]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":1}],"updated_date":"2026-06-12T08:23:45.883708","created_date":"2025-10-10T00:00:00"}