Multidimensional zero‐correlation linear cryptanalysis of lightweight block cipher Piccolo‐128

• Published in: Security and communication networks Vol. 9; no. 17; pp. 4520 - 4535
• Main Authors: Fu, Li‐shi, Jin, Chen‐hui, Li, Xin‐ran
• Format: Journal Article
• Language: English
• Published: Chichester, UK John Wiley & Sons, Ltd 25.11.2016; Hindawi Limited
• Subjects: Approximation; Complexity; Cryptography; Encryption; Lightweight; lightweight block cipher; multidimensional zero‐correlation linear cryptanalysis; partial sum technique; Piccolo block cipher; Security; Statistics; Weight reduction
• ISSN: 1939-0114; 1939-0122
• DOI: 10.1002/sec.1644

Piccolo is a lightweight block cipher proposed at CHES 2011. This paper firstly gives the zero‐correlation linear approximations over 7‐round Piccolo and studies the security of Piccolo‐128 against multidimensional zero‐correlation linear cryptanalysis. Based on the statistic used in multidimensional linear cryptanalysis to detect the right key and wrong keys, this paper gives the data complexity when using this statistic in multidimensional zero‐correlation linear cryptanalysis. Finally, with partial sum technique and the relation between the round keys in Piccolo‐128, the first known‐plaintexts attacks on round 0–12/round, 15–28/round, and 14–28 of Piccolo‐128 are proposed; the data complexities of those attacks are 256.8/252.43/255.6 known plaintexts, respectively; and the time complexities are 2117.2,2123.09,2126.55, respectively. Copyright © 2016 John Wiley & Sons, Ltd. This paper firstly gives the zero‐correlation linear approximations over 7‐round Piccolo and presents the 13‐round/14‐round/15‐round multidimensional zero‐correlation linear cryptanalysis on Piccolo‐128. Those attacks are the first known‐plaintexts attacks on Piccolo.