[Resource Topic] 2023/730: The Problem of Half Round Key XOR

Welcome to the resource topic for 2023/730

The Problem of Half Round Key XOR

Authors: Anubhab Baksi


In the design of GIFT, half round key XOR is used. This leads to the undesired consequence that the security against the differential/linear attacks are overestimated. This comes from the observation that; in the usual DDT/LAT based analysis of the differential/linear attacks, the inherent assumption is the full round key is XORed at each round.

ePrint: https://eprint.iacr.org/2023/730

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .