自等价编码与白盒实现方案的改进

doi:10.19665/j.issn1001-2400.2022.02.017

Abstract

Abstract:

In the white box attack environment,the attacker can not only access the input and output of the cryptographic algorithms,but also obtain the internal details of the algorithms and control the terminal.In this environment,CHOW et al.constructed the look-up tables by using network encodings,embedded the key in the look-up tables,and designed the white-box implementation scheme for the AES algorithm and DES algorithm.The white-box implementation of the cryptographic algorithm based on self-equivalent encodings design is a new implementation method.RANEA et al.designed a white-box implementation scheme for substitution replacement cipher by using the self-equivalent encodings of the S-box.The size of encoding space completely depends on the S-box self-equivalence of the cipher,and the security analysis also shows that the application scope of this scheme is limited.In view of this situation,this paper considers the impact of self-equivalence of the S-box on the security of white-box implementation,and proposes two improved schemes for expanding the encoding space of the white-box implementation scheme by adding self-equivalence encodings to the linear layer or linear encodings to the affine layer.Security analysis shows that the two improved schemes can effectively resist the attacks from RANEAet al,and expand the application scope of the scheme.Finally,based on the above two design schemes,this paper constructs two white-box implementations of the AES algorithm,and compares the security with the white-box AES scheme of RANEA et al.The comparison results show that the two improved schemes can resist protocol attacks based on the centralization problem and asymmetric problem.

Key words: white-box implementation, encoding, block cipher, SPN cipher

CLC Number:

TN918.1

LUO Yinuo,TONG Peng,CHEN Jie,DONG Xiaoli. Self-equivalence encodings and improvements of white-box implementations[J].Journal of Xidian University, 2022, 49(2): 146-154.

Figures/Tables 5

References 25

[1]	CHOW S, EISEN P, JOHNSON H, et al. White-Box Cryptography and an AES Implementation[C]// International Workshop on Selected Areas in Cryptography.Heidelberg:Springer, 2003:250-270.
[2]	XIAO YY, LAI X J. A Secure Implementation of White-Box AES[C]// Proceeding of the 2009 2nd International Conference on Computer Science and Its Applications.Piscataway:IEEE, 2009:5404239.
[3]	LUO R, LAI X, YOU R. A New Attempt of White-Box AES Implementation[C]// Proceeding 2014 IEEE International Conference on Security,Pattern Analysis,and Cybernetics (SPAC).Piscataway:IEEE, 2014:423-429.
[4]	KARROUMI M. Protecting White-Box AES with Dual Ciphers[C]// International Conference on Information Security and Cryptology.Heidelberg:Springer, 2010:278-291.
[5]	BRINGER J, CHABANNE H, DOTTAX E. White Box Cryptography:Another Attempt (2006)[J/OL].[2006-12-11]. http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.99.661&rep=rep1&type=pdf.
[6]	XIAO Y, LAI X J. White-Box Cryptography and Implementation of AES and SMS4[C]// Proceedings of the 2009 China Crypt CACR Annual Meeting. Beijing: China Crypt, 2009:24-34.
[7]	姚思, 陈杰. SM4算法的一种新型白盒实现[J]. 密码学报, 2020, 7(3):358-374.
	YAO Si, CHEN Jie. A New Method for White-box Implementation of SM4 Algorithm[J]. Journal of Cryptologic Research, 2020, 7(3):358-374.
[8]	BAI K P, WU C K. A Secure White-Box SM4 Implementation[J]. Security and Communication Networks, 2016, 9(10):996-1006. doi: 10.1002/sec.1394
[9]	SU S, DONG H, FU G, et al. A White-Box CLEFIA Implementation for Mobile Devices[C]// 2014 Communications Security Conference.Piscataway:IEEE, 2014:0752.
[10]	姚思, 陈杰, 宫雅婷, 等. CLEFIA算法的一种新型白盒实现[J]. 西安电子科技大学学报, 2020, 47(5):150-158.
	YAO Si, CHEN Jie, GONG Yating, et al. A New Method for White-Box Implementation of CLEFIA Algorithm[J]. Journal of Xidian University, 2020, 47(5):150-158.
[11]	宫雅婷. 白盒CLEFIA算法的安全性分析与改进[D]. 西安: 西安电子科技大学, 2019.
[12]	MCMILLION B, SULLIVAN N. Attacking White-Box AES Constructions[C]// Proceedings of the 2016 ACM Workshop on Software Protection. New York: ACM, 2016:85-90.
[13]	RANEA A, PRENEEL B. On Self-Equivalence Encodings in White-Box Implementations (2020)[J/OL].[2020-12-30]. https://eprint.iacr.org/2020/1325.pdf.
[14]	王滨, 陈思, 陈加栋, 等. DWB-AES:基于AES的动态白盒实现方法[J]. 通信学报, 2021, 42(2):177-186.
	WANG Bin, CHEN Si, CHEN Jiadong, et al. DWB-AES:An Implementation of Dynamic White Box Based on AES[J]. Journal of Communications, 2021, 42(2):177-186.
[15]	BILLET O, GILBERT H, ECH-CHATBI C. Cryptanalysis of a WhiteBox AES Implementation[C]// International Workshop on Selected Areas in Cryptography.Heidelberg:Springer, 2004:227-240.
[16]	MICHIELS W, GORISSEN P, HOLLMANN H D. Cryptanalysis of a Generic Class of White-Box Implementations[C]// International Workshop on Selected Areas in Cryptography.Heidelberg:Springer, 2008:414-428.
[17]	MULDER Y D, ROELSE P, PRENEEL B. Cryptanalysis of the Xiao-Lai White-Box AES Implementation[C]// International Conference on Selected Areas in Cryptography.Heidelberg:Springer, 2013:34-49.
[18]	潘文伦, 秦体红, 贾音, 等. 对两个SM4白盒方案的分析[J]. 密码学报, 2018, 5(6):651-670.
	PAN Wenlun, QIN Tihong, JIA Yin, et al. Cryptanalysis of Two White-Box SM4 Implementations[J]. Journal of Cryptologic Research, 2018, 5(6):651-670.
[19]	BIRYUKOV A, UDOVENKO A. Dummy Shuffling Against Algebraic Attacks in White-Box Implementations[C]// Annual International Conference on the Theory and Applications of Cryptographic Techniques.Heidelberg:Springer, 2021:219-248.
[20]	AMAORI A, MICHIELS W, ROELSE P. A DFA Attack on White-Box Implementations of AES with External Encodings[C]// International Conference on Selected Areas in Cryptography.Heidelberg:Springer, 2019:591-617.
[21]	BIRYUKOV A, BOUILLAGUET C, KHOVRATOVICH D. Cryptographic SchemesBased on the ASASA Structure:Black-Box,White-Box,and Public-Key[C]// International Conference on the Theory and Application of Cryptology and Information Security.Heidelberg:Springer, 2014:63-84.
[22]	BOGDANOV A, ISOBE T. White-Box Cryptography Revisited:Space-Hard Ciphers[C]// Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security. New York: ACM, 2015:1058-1069.
[23]	SHI Y, WEI W, ZHANG F, et al. SDSRS:A Novel White-Box Cryptography Scheme for Securing Embedded Devices in IIoT[J]. IEEE Transactions on Industrial Informatics, 2020, 16(3):1602-1616. doi: 10.1109/TII.2019.2929431
[24]	SANDRA R. Design of White-Box Encryption Schemes for Mobile Applications Security[D]. Nancy & Metz:Université de Lorraine, 2020.
[25]	BIRYUKOV A, DE CANNIERE C, BRAEKEN A, et al. A Toolbox for Cryptanalysis:Linear and Affine Equivalence Algorithms[C]// International Conference on the Theory and Applications of Cryptographic Techniques.Heidelberg:Springer, 2003:33-50.

参数	原白盒AES^[13]	白盒AES的改进1	白盒AES的改进2
原分块编码空间	2 040	2^{1 033}	2⁷³
经中心化子问题归约	255	2^{1 033}	2⁷³
经非对称问题归约	\|(LSE(S)∩{M_α:0≠α∈GF(2⁸)})\|	2^{1 033}	2⁷³

Self-equivalence encodings and improvements of white-box implementations

RichHTML

PDF (PC)

Like

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 25

Related Articles 15

Metrics

Comments

Recommended 10

[1]	ZHANG Yan,WANG Xiangyu,ZHANG Zhongwei,SUN Yemei,LIU Shudong. Boundary-aware network for building extraction from remote sensing images [J]. Journal of Xidian University, 2022, 49(1): 236-244.
[2]	YE Tao,WEI Yongzhuang,LI Lingchen. Analysis of zero-sum distinguisher of the KNOT authenticated encryption algorithm [J]. Journal of Xidian University, 2021, 48(1): 76-86.
[3]	LI Runzhou,HUANG Qin. Additive Fourier transform encoding algorithm for binary quasi-cyclic codes [J]. Journal of Xidian University, 2020, 47(6): 21-29.
[4]	YAO Si,CHEN Jie,GONG Yating,XU Dong. A new method for white-box implementation of CLEFIA algorithm [J]. Journal of Xidian University, 2020, 47(5): 150-158.
[5]	HAN Hui, MU Jianjun, JIAO Xiaopeng. Coding and decoding algorithms for systematic permutation codes at the Chebyshev distance [J]. Journal of Xidian University, 2018, 45(6): 26-30+98.
[6]	WEI Xiaoran;GENG Guohua;ZHANG Yuhe. Connectivity compression of triangle meshes based on geometric parameter predict [J]. J4, 2015, 42(5): 194-199.
[7]	XU Juan;YAO Rugui;LI Lu;GAO Fanqi. LDPC encoding algorithm based on optimized sparse LU decomposition in the CMMB standard [J]. J4, 2015, 42(2): 127-132.
[8]	LUO Fang;ZHOU Xueguang;OU Qingyu. Cryptanalysis of the LBlock using multiple zero-correlation linear approximations [J]. J4, 2014, 41(5): 173-179.
[9]	Renqingdaoerji;WANG Yuping. Schema theorem based on limited character set encoding and its proof [J]. J4, 2012, 39(6): 99-103.
[10]	CHEN Chao;BAI Bao-ming;WANG Xin-mei. A class of nonbinary quasi-cyclic LDPC codes with a low-density generator matrix [J]. J4, 2010, 37(3): 412-416.
[11]	WEI Yong-zhuang;HU Yu-pu;CHEN Jie. Differential-nonlinear attack on 33-round SHACAL-2 [J]. J4, 2010, 37(1): 102-106+118.
[12]	WU Qi-song;JING Wei;XING Meng-dao;BAO Zheng. Wide swath imaging with multidimensional waveform encoding [J]. J4, 2009, 36(5): 801-806+845.
[13]	LI Xue-yuan;WANG Xin-mei. Generalized tweakable enciphering schemes [J]. J4, 2009, 36(4): 686-690.
[14]	LI Zhuo;XING Li-juan;WANG Xin-mei. Encoding and decoding of a family of quantum stabilizer codes [J]. J4, 2008, 35(5): 834-837.
[15]	CHEN Jie;HU Yu-pu;ZHANG Yue-yu. Impossible differential attack on the 17-round block cipher SMS4 [J]. J4, 2008, 35(3): 455-458.