id: 01302847
dt: a
an: 01302847
au: Shimoyama, Takeshi; Kaneko, Toshinobu
ti: Quadratic relation of $S$-box and its application to the linear attack of
    full round DES.
so: Krawczyk, Hugo (ed.), Advances in cryptology - CRYPTO ’98. 18th annual
    international cryptology conference, Santa Barbara, CA, USA, August
    23‒27, 1998. Proceedings. Berlin: Springer. Lect. Notes Comput. Sci.
    1462, 200-211 (1998).
py: 1998
pu: Berlin: Springer
la: EN
cc: 
ut: $S$-boxes of DES; improved linear attack; full round DES
ci: 
li: 
ab: Summary: The authors derive 7 quadratic relations over $GF(2)$ from the
    input and output bits of the $S$-boxes of DES. They apply one of those
    to an improved linear attack of full round DES and describe an improved
    algorithm by combining the nonlinear approximation method proposed by
    {\it L. Knudsen} and {\it M. Robshaw} [Eurocrypt’96, Lect. Notes
    Comput. Sci. 1070, 224-236 (1996)], and the multiple approximation
    method proposed by {\it B. Kaliski} and {\it M. Robshaw} [CRYPTO’94,
    Lect. Notes Comput. Sci. 839, 26-38 (1994)]. This improvement can
    reduce the number of required plaintexts and ciphertexts pairs to 25/34
    (73.5 \%) of those number of pairs $2^{43}$ required in the linear
    attack by M. Matsui.
rv: