{"id":"https://openalex.org/W7136155224","doi":"https://doi.org/10.46586/tosc.v2026.i1.95-118","title":"Cryptanalysis of Two Alternating Moduli Weak PRFs","display_name":"Cryptanalysis of Two Alternating Moduli Weak PRFs","publication_year":2026,"publication_date":"2026-03-16","ids":{"openalex":"https://openalex.org/W7136155224","doi":"https://doi.org/10.46586/tosc.v2026.i1.95-118"},"language":"en","primary_location":{"id":"doi:10.46586/tosc.v2026.i1.95-118","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2026.i1.95-118","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/12780/12469","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://tosc.iacr.org/index.php/ToSC/article/download/12780/12469","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071613345","display_name":"Kai Hu","orcid":null},"institutions":[{"id":"https://openalex.org/I80143920","display_name":"Shandong University of Science and Technology","ror":"https://ror.org/04gtjhw98","country_code":"CN","type":"education","lineage":["https://openalex.org/I80143920"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Kai Hu","raw_affiliation_strings":["School of Cyber Science and Technology, Shandong University, Qingdao, Shandong, China; State Key Laboratory of Cryptography and Digital Economy Security, Shandong University, Qingdao, China; Suzhou Research Institute, Shandong University, Suzhou, China"],"affiliations":[{"raw_affiliation_string":"School of Cyber Science and Technology, Shandong University, Qingdao, Shandong, China; State Key Laboratory of Cryptography and Digital Economy Security, Shandong University, Qingdao, China; Suzhou Research Institute, Shandong University, Suzhou, China","institution_ids":["https://openalex.org/I80143920"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5129576348","display_name":"Gregor Leander","orcid":null},"institutions":[{"id":"https://openalex.org/I904495901","display_name":"Ruhr University Bochum","ror":"https://ror.org/04tsk2644","country_code":"DE","type":"education","lineage":["https://openalex.org/I904495901"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Gregor Leander","raw_affiliation_strings":["Faculty of Computer Science, Ruhr University Bochum, Bochum, Germany"],"affiliations":[{"raw_affiliation_string":"Faculty of Computer Science, Ruhr University Bochum, Bochum, Germany","institution_ids":["https://openalex.org/I904495901"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076325798","display_name":"H\u00e5vard Raddum","orcid":"https://orcid.org/0000-0001-9779-5986"},"institutions":[{"id":"https://openalex.org/I2799829267","display_name":"Simula Research Laboratory","ror":"https://ror.org/00vn06n10","country_code":"NO","type":"facility","lineage":["https://openalex.org/I2799829267"]},{"id":"https://openalex.org/I4387153661","display_name":"Simula UiB","ror":"https://ror.org/05kmggt55","country_code":null,"type":"nonprofit","lineage":["https://openalex.org/I2799829267","https://openalex.org/I4387153661","https://openalex.org/I4432739"]}],"countries":["NO"],"is_corresponding":false,"raw_author_name":"H\u00e5vard Raddum","raw_affiliation_strings":["Simula UiB, Bergen, Norway"],"affiliations":[{"raw_affiliation_string":"Simula UiB, Bergen, Norway","institution_ids":["https://openalex.org/I2799829267","https://openalex.org/I4387153661"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5129485163","display_name":"Arne Sandrib","orcid":null},"institutions":[{"id":"https://openalex.org/I4432739","display_name":"University of Bergen","ror":"https://ror.org/03zga2b32","country_code":"NO","type":"education","lineage":["https://openalex.org/I4432739"]}],"countries":["NO"],"is_corresponding":false,"raw_author_name":"Arne Sandrib","raw_affiliation_strings":["Department of Informatics, University of Bergen, Bergen, Norway"],"affiliations":[{"raw_affiliation_string":"Department of Informatics, University of Bergen, Bergen, Norway","institution_ids":["https://openalex.org/I4432739"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5129627095","display_name":"Aleksei Udovenko","orcid":null},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Aleksei Udovenko","raw_affiliation_strings":["SnT, University of Luxembourg, Esch-sur-Alzette, Luxembourg"],"affiliations":[{"raw_affiliation_string":"SnT, University of Luxembourg, Esch-sur-Alzette, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]}],"institutions":[],"countries_distinct_count":4,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5071613345"],"corresponding_institution_ids":["https://openalex.org/I80143920"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.77458267,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"2026","issue":"1","first_page":"95","last_page":"118"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11130","display_name":"Coding theory and cryptography","score":0.6747000217437744,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11130","display_name":"Coding theory and cryptography","score":0.6747000217437744,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.13729999959468842,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.05990000069141388,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cryptanalysis","display_name":"Cryptanalysis","score":0.6689000129699707},{"id":"https://openalex.org/keywords/polynomial","display_name":"Polynomial","score":0.460099995136261},{"id":"https://openalex.org/keywords/moduli","display_name":"Moduli","score":0.43369999527931213},{"id":"https://openalex.org/keywords/algebra-over-a-field","display_name":"Algebra over a field","score":0.3711000084877014},{"id":"https://openalex.org/keywords/calculus","display_name":"Calculus (dental)","score":0.29660001397132874},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.2939999997615814}],"concepts":[{"id":"https://openalex.org/C181149355","wikidata":"https://www.wikidata.org/wiki/Q897511","display_name":"Cryptanalysis","level":3,"score":0.6689000129699707},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.49140000343322754},{"id":"https://openalex.org/C90119067","wikidata":"https://www.wikidata.org/wiki/Q43260","display_name":"Polynomial","level":2,"score":0.460099995136261},{"id":"https://openalex.org/C121089165","wikidata":"https://www.wikidata.org/wiki/Q6889796","display_name":"Moduli","level":2,"score":0.43369999527931213},{"id":"https://openalex.org/C136119220","wikidata":"https://www.wikidata.org/wiki/Q1000660","display_name":"Algebra over a field","level":2,"score":0.3711000084877014},{"id":"https://openalex.org/C202444582","wikidata":"https://www.wikidata.org/wiki/Q837863","display_name":"Pure mathematics","level":1,"score":0.3537999987602234},{"id":"https://openalex.org/C118615104","wikidata":"https://www.wikidata.org/wiki/Q121416","display_name":"Discrete mathematics","level":1,"score":0.32820001244544983},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.3230000138282776},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.31540000438690186},{"id":"https://openalex.org/C2777686260","wikidata":"https://www.wikidata.org/wiki/Q144037","display_name":"Calculus (dental)","level":2,"score":0.29660001397132874},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.2939999997615814},{"id":"https://openalex.org/C36123800","wikidata":"https://www.wikidata.org/wiki/Q1224471","display_name":"Differential cryptanalysis","level":4,"score":0.27720001339912415},{"id":"https://openalex.org/C140642157","wikidata":"https://www.wikidata.org/wiki/Q1623338","display_name":"Pseudorandom number generator","level":2,"score":0.2720000147819519},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.26269999146461487},{"id":"https://openalex.org/C178774983","wikidata":"https://www.wikidata.org/wiki/Q734896","display_name":"Pseudorandom function family","level":3,"score":0.2556999921798706},{"id":"https://openalex.org/C203024314","wikidata":"https://www.wikidata.org/wiki/Q1365258","display_name":"Fourier analysis","level":3,"score":0.2513999938964844},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.25099998712539673}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.46586/tosc.v2026.i1.95-118","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2026.i1.95-118","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/12780/12469","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:2133477a6705460583963effb65f69b9","is_oa":true,"landing_page_url":"https://doaj.org/article/2133477a6705460583963effb65f69b9","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, Vol 2026, Iss 1 (2026)","raw_type":"article"},{"id":"pmh:oai:orbilu.uni.lu:10993/67999","is_oa":true,"landing_page_url":"https://orbilu.uni.lu/handle/10993/67999","pdf_url":null,"source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, 2026 (1), 95-118 (2026-03-16)","raw_type":"peer reviewed"}],"best_oa_location":{"id":"doi:10.46586/tosc.v2026.i1.95-118","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2026.i1.95-118","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/12780/12469","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G3910829908","display_name":null,"funder_award_id":"China","funder_id":"https://openalex.org/F4320322769","funder_display_name":"Natural Science Foundation of Jiangsu Province"}],"funders":[{"id":"https://openalex.org/F4320321605","display_name":"Government of Jiangsu Province","ror":"https://ror.org/004svx814"},{"id":"https://openalex.org/F4320322769","display_name":"Natural Science Foundation of Jiangsu Province","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320324174","display_name":"Natural Science Foundation of Shandong Province","ror":null},{"id":"https://openalex.org/F4320327491","display_name":"Universit\u00e4t Innsbruck","ror":"https://ror.org/054pv6659"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W7136155224.pdf","grobid_xml":"https://content.openalex.org/works/W7136155224.grobid-xml"},"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"In":[0],"this":[1],"work,":[2],"we":[3],"present":[4],"new":[5],"cryptanalytic":[6],"attacks":[7,20],"on":[8,21,38],"recently":[9],"proposed,":[10],"theory-inspired":[11],"constructions":[12],"of":[13,44,48,70],"weak":[14],"pseudorandom":[15],"functions":[16],"(weak-PRFs).":[17],"We":[18],"demonstrate":[19],"several":[22],"such":[23],"designs,":[24],"showing":[25],"that":[26],"the":[27,42,63],"initial":[28],"security":[29],"arguments":[30],"require":[31],"significant":[32],"refinement.":[33],"Methodologically,":[34],"our":[35],"approach":[36],"relies":[37],"novel":[39],"observations":[40],"about":[41],"structure":[43],"cyclic":[45],"matrices,":[46],"applications":[47],"Wagner\u2019s":[49],"generalized":[50],"birthday":[51],"technique,":[52],"and":[53],"conversion":[54],"into":[55],"polynomial":[56],"systems":[57],"over":[58],"F3.":[59],"These":[60],"findings":[61],"highlight":[62],"need":[64],"for":[65],"a":[66],"more":[67],"careful":[68],"analysis":[69],"those":[71],"weak-PRF":[72],"candidates.":[73]},"counts_by_year":[],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2026-03-17T00:00:00"}