HBcipher: 一种高效的轻量级分组密码

doi:10.13868/j.cnki.jcr.000306

摘要
图/表
参考文献
相关文章 (15)

全文: PDF (3847 KB) HTML (1 KB)
输出: BibTeX | EndNote (RIS)

摘要

随着物联网应用的普及, 高效的轻量级分组密码对于保障资源受限设备的信息安全具有重要意义. 本文提出一种高效的轻量级分组密码算法, 命名为HBcipher. HBcipher 分组长度为64 位, 密钥长度支持64 位和128 位. 算法轮函数采用三组 SPN 结构的 F 函数, 且在设计 F 函数时利用几何图形映射性质构造一种 P₂ 置换方法, 充分隐藏明文的统计特性, 提高抗统计分析的能力, 为避免最后一轮完全暴露给攻击者, 我们在最后一轮 P₂ 置换输出后, 增加白化密钥加模块. 同时, 我们设计了一种动态轮密钥加运算操作, 加密数据根据算法轮运算控制信号的奇偶性来动态选择更新后的子密钥, 与一般静态密钥加相比, 提高了算法灵活性和安全性, 特别是抵抗自相似攻击. 实验证明, HBcipher 算法具有良好的雪崩效应、随机化特性, 并且与偏向硬件实现的PRESENT算法相比其软件实现性能更优越, 而与偏向软件实现的RECTANGLE 算法相比其硬件实现面积更小. 最后, 对HBcipher 进行了安全分析, 结果表明其具有抵抗差分攻击、线性攻击等已知攻击的能力.

	服务

	把本文推荐给朋友
	加入我的书架
	加入引用管理器
	E-mail Alert
	RSS
	作者相关文章
	李浪
	郭影
	刘波涛
	欧雨

关键词 ：分组密码, SPN, 密钥加, 雪崩效应, 物联网

Abstract：

With the popularity of IoT applications, it has a great significance to design efficient and lightweight block ciphers to ensure the information security for the resource-constrained devices. This study designs a high-efficiency lightweight block cipher named HBcipher. Its block length is 64 bits and it supports key lengths of 64 bits and 128 bits. The round function of HBcipher adopts three sets of F-functions of SPN structure, and constructs a new P₂ permutation by using geometric mapping properties when designing the F-function, which effectively hides the statistical characteristics of plaintext and improves the ability of anti-statistical analysis. In order to avoid completely exposing the last round to the attacker, a whitening key module is added after the last round of P₂ permutation output. Meanwhile, a dynamic AddRoundKey operation is designed. The encrypted data dynamically selects the updated subkey according to the parity of the algorithm's control signal. Compared with the general static AddRoundKey, the algorithm improves the flexibility, security, and especially the ability of resisting the self-similar attack. The experimental results show that the HBcipher algorithm has nice avalanche effect and randomization characteristics, and its software implementation performance is superior to the PRESENT which is optimized for hardware implementation. Compared with the RECTANGLE which is optimized for software implementation, the hardware implementation area of HBcipher is smaller. Security analyses shows that the HBcipher algorithm has the ability to resist the currently known attacks such as differential and linear.

Key words： block cipher SPN AddRoundKey avalanche effect IoT

收稿日期: 2018-05-06 出版日期: 2018-08-08

基金资助:国家自然科学基金(61572174); 湖南省中央引导地方科技发展专项资金 (2018CT5001); 湖南省自然科学基金(2019JJ60004); 湖南省``双一流''应用特色学科(湘教通[2018]469号); 湖南省科技计划项目(2016TP1020); 衡阳师范学院学科群建设项目(18XKQ02); 衡阳师范学院产学研基金(16CXYZ01)

通讯作者: 李浪, E-mail: lilang911@126.com

引用本文:

李浪, 郭影, 刘波涛, 欧雨. HBcipher: 一种高效的轻量级分组密码[J]. 密码学报, 2019, 6(3): 336-352.
LI L, GUO Y, LIU B T, OU Y. HBcipher: An Efficient Lightweight Block Cipher. Journal of Cryptologic Research, 2019, 6(3): 336-352.

链接本文:

http://www.jcr.cacrnet.org.cn/CN/10.13868/j.cnki.jcr.000306 或 http://www.jcr.cacrnet.org.cn/CN/Y2019/V6/I3/336

[1] DAEMEN J, RIJMEN V. The Design of Rijndael: AES—The Advanced encryption Standard[M]. Springer-Verlag, 2002. [DOI: 10.1007/978-3-662-04722-4]
[2] MORADI A, POSCHMANN A, LING S, et al. Pushing the limits: A very compact and a threshold implementation of AES[C]. In: Advances in Cryptology—EUROCRYPT 2011. Springer Berlin Heidelberg, 2011: 69–88. [DOI: 10.1007/978-3-642-20465-4_6]
[3] BANIK S, BOGDANOV A, REGAZZONI F. Atomic-AES: A compact implementation of the AES encryp- tion/decryption core[C]. In: Progress in Cryptology—INDOCRYPT 2016. Springer Cham, 2016: 173–190. [DOI: 10.1007/978-3-319-49890-4_10]
[4] WAMSER M S, SIGL G. Pushing the limits further: Sub-atomic AES[C]. In: Proceedings of IFIP/IEEE Interna- tional Conference on Very Large Scale Integration. IEEE, 2017: 1–6. [DOI: 10.1109/VLSI-Soc.2017.8203470]
[5] WU W, ZHANG L. LBlock: A lightweight block cipher[C]. In: Applied Cryptography and Network Securi- ty—ACNS 2011. Springer Berlin Heidelberg, 2011: 327–344. [DOI: 10.1007/978-3-642-21554-4_19]
[6] SIM S M, KHOO K, OGGIER F, et al. Lightweight MDS involution matrices[C]. In: Fast Software Encryp- tion—FSE 2015. Springer Berlin Heidelberg, 2015: 471–493. [DOI: 10.1007/978-3-662-48116-5_23]
[7] LEANDER G, PAAR C, POSCHMANN A, et al. New lightweight DES variants[C]. In: Fast Software Encryp- tion—FSE 2007. Springer Berlin Heidelberg, 2007: 196–210. [DOI: 10.1007/978-3-540-74619-5_13]
[8] ENGELS D, SAARINEN M J O, SCHWEITZER P, et al. The Hummingbird-2 lightweight authenticated en- cryption algorithm[C]. In: RFID. Security and Privacy—RFIDSec 2011. Springer Berlin Heidelberg, 2011: 19–31. [DOI: 10.1007/978-3-642-25286-0_2]
[9] LI L, LI K L, HE W W, et al. Magpie: A high-security lightweight block cipher[J]. Acta Electronica Sinica, 2017, 45(10): 2521–2527. [DOI: 10.3969/j.issn.0372-2112.2017.10.029]
李浪, 李肯立, 贺位位, 等. Magpie: 一种高安全的轻量级分组密码算法. 电子学报, 2017, 45(10): 2521–2527. [DOI: 10.3969/j.issn.0372-2112.2017.10.029]
[10] LI L, LIU B, WANG H. QTL: A new ultra-lightweight block cipher[J]. Microprocessors & Microsystems, 2016, 45: 45–55. [DOI: 10.1016/j.micpro.2016.03.011]
[11] GONG Z, NIKOVA S, LAW Y W. KLEIN: A new family of lightweight block ciphers[C]. In: RFID. Security and Privacy—RFIDSec 2011. Springer Berlin Heidelberg, 2011: 1–18. [DOI: 10.1007/978-3-642-25286-0_1]
[12] GUO J, PEYRIN T, POSCHMANN A, et al. The LED block cipher[C]. In: Cryptographic Hardware and Embedded Systems—CHES 2011. Springer Berlin Heidelberg, 2011: 326–341. [DOI: 10.1007/978-3-642-23951- 9_22]
[13] BOGDANOV A, KNUDSEN L R, LEANDER G, et al. PRESENT: An ultra-lightweight block cipher[C]. In: Cryptographic Hardware and Embedded Systems—CHES 2007. Springer Berlin Heidelberg, 2007: 450–466. [DOI: 10.1007/978-3-540-74735-2_31]
[14] KOBAYASHI E, SUZAKI T, MINEMATSU K, et al. TWINE: A lightweight block cipher for multiple platforms[C]. In: Selected Areas in Cryptography—SAC 2012. Springer Berlin Heidelberg, 2012: 339–354. [DOI: 10.1007/978- 3-642-35999-6_22]
[15] CANNIÈRE C D, DUNKELMAN O, KNEŽEVIĆ M. KATAN and KTANTAN—A family of small and eﬃcient hardware-oriented block ciphers[C]. In: Cryptographic Hardware and Embedded Systems—CHES 2009. Springer Berlin Heidelberg, 2009: 272–288. [DOI: 10.1007/978-3-642-04138-9_20]
[16] BENADJILA R, GUO J, LOMNÉ V, et al. Implementing lightweight block ciphers on x86 architectures[C]. In: Selected Areas in Cryptography—SAC 2013. Springer Berlin Heidelberg, 2013: 324–351. [DOI: 10.1007/978-3- 662-43414-7_17]
[17] BOGDANOV A, MENDEL F, REGAZZONI F, et al. ALE: AES-based lightweight authenticated encryption[C]. In: Fast Software encryption—FSE 2013. Springer Berlin Heidelberg, 2013: 447–466. [DOI: 10.1007/978-3-662- 43933-3_23]
[18] MATSUDA S, MORIAI S. Lightweight cryptography for the cloud: Exploit the power of bitslice implementa- tion[C]. In: Cryptographic Hardware and Embedded Systems—CHES 2012. Springer Berlin Heidelberg, 2012: 408–425. [DOI: 10.1007/978-3-642-33027-8_24]
[19] COURTOIS N T, PIEPRZYK J. Cryptanalysis of block ciphers with overdeﬁned systems of equations[C]. In: Advances in Cryptology—ASIACRYPT 2002. Springer Berlin Heidelberg, 2002: 267–287. [DOI: 10.1007/3-540- 36178-2_17]
[20] ZHANG W T, BAO Z Z, LIN D D, et al. RECTANGLE: A bit-slice lightweight block cipher suitable for multiple platforms[J]. Science China Information Sciences, 2015, 58(12): 1–15. [DOI: 10.1007/s11432-015-5459-7]