[Resource Topic] 2022/725: Revisiting Related-Key Boomerang attacks on AES using computer-aided tool

Welcome to the resource topic for 2022/725

Revisiting Related-Key Boomerang attacks on AES using computer-aided tool

Authors: Patrick Derbez, Marie Euler, Pierre-Alain Fouque, and Phuong Hoa Nguyen


In recent years, several MILP models were introduced to search automatically for boomerang distinguishers and boomerang attacks on block ciphers. However, they can only be used when the key schedule is linear. Here, a new model is introduced to deal with nonlinear key schedules as it is the case for AES. This model is more complex and actually it is too slow for exhaustive search. However, when some hints are added to the solver, it found the current best related-key boomerang attack on AES 192 with 2^{136.4} time, 2^{126.2} data, and 2^{94.4} memory complexities, which is better than the one presented by Biryukov and Khovratovich at ASIACRYPT 2009 with complexities 2^{176}/2^{123}/2^{152} respectively. This represents a huge improvement for the time and memory complexity, illustrating the power of MILP in cryptanalysis.

ePrint: https://eprint.iacr.org/2022/725

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .