【作者】 罗岚； 瞿泽辉； 秦志光； 魏正耀；

【Author】 Luo Lan, Qu ZeHui,Qin ZhiGuang,Wei ZhengYao ( School of Computer Science and Technology , University of Electronic Science Technology of China, ChengDu, China)

【机构】 电子科技大学计算机科学与技术学院；

【摘要】 针对分组密码算法中谱能量守恒定理进行了描述及证明,阐述了线性攻击的理论依据。算法公开的分组密码,当样本空间足够大、差错率可控时,根据信息泄露程度能够对算法线性攻击进行定量评估。为了加强安全特征,分组密码算法各个模块及整体结构需要减弱与其相关的运算速度、硬件面积等因素。本文近一步提出:基于最坏情况进行分组密码算法设计时,为了保证线性攻击值不超出评估上界, 需要对非线性模块进行加强设计;通过与其他模块功能之间的协调达到安全评估的标准。特别对于高级加密标准算法的S盒设计,增加掩码设计可以加强抗线性攻击安全程度。更多还原

【Abstract】 The energy conservation based on block cipher algorithm is depicted and proved. This is the theory foundation of linear attack. The attack to some logic parts effectively when there is plenty of data and the data’s error ratio controlled while block cipher algorithm is known. To enforce the security of algorithm, the modules of block cipher and the whole structures need decrease the speed and cipher chip’s space. Finally, This article approach that the non_linear design should be enforce to ensure the value of linear attack not beyond the limit at the block cipher’s worst condition design and to satisfy the standard of security through the module correspond. Especially, the masking design in S-box of advanced encryption standard can make the algorithm safer to against linear attack.更多还原