cryptanalysis reverse engineering and design of symmetric
play

Cryptanalysis, Reverse-Engineering and Design of Symmetric - PowerPoint PPT Presentation

Nov 03, 2023 •415 likes •1.14k views

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin CSC & SnT, University of Luxembourg CryptoLUX Team ; supervised by Alex Biryukov July 5th 2018 Introduction What is cryptography?

  1. Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Léo Perrin CSC & SnT, University of Luxembourg CryptoLUX Team ; supervised by Alex Biryukov July 5th 2018

  2. Introduction What is cryptography? Cryptography? (1/3) Alice Bob 1 / 27

  3. Introduction What is cryptography? Cryptography? (1/3) Charlie Alice Bob 1 / 27

  4. Introduction What is cryptography? Cryptography? (1/3) 1 / 27

  5. Introduction What is cryptography? Cryptography? (2/3) Cryptography is everywhere! 2 / 27

  6. Introduction What is cryptography? Cryptography? (3/3) CRYPTO LUX 3 / 27

  7. Introduction What is cryptography? Cryptography? (3/3) Envelope: Confidentiality (nobody can read it) CRYPTO LUX 3 / 27

  8. Introduction What is cryptography? Cryptography? (3/3) Envelope: Confidentiality (nobody can read it) Seal: Integrity CRYPTO (nobody can modify it) LUX 3 / 27

  9. Introduction What is cryptography? Cryptography? (3/3) Envelope: Confidentiality (nobody can read it) Seal: Integrity CRYPTO (nobody can modify it) LUX Paul Signature: Authentication (it was wri  en by the right person) 3 / 27

  10. Introduction What is cryptography? Modern Cryptography Before Data encrypted Leters/Digits By hand/ Method machine Linguists Cryptographers inventors Example 4 / 27

  11. Introduction What is cryptography? Modern Cryptography Before Now Data encrypted Leters/Digits 0,1 (bits) By hand/ Method Computer program machine Linguists Mathematicians Cryptographers inventors Computer scientists Example 4 / 27

  12. Introduction How do we make cryptographic algorithms? How do we design such algorithms? 5 / 27

  13. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research 6 / 27

  14. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment time Publication Standardization 6 / 27

  15. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams time Publication Standardization 6 / 27

  16. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams Scope statement Algorithm specification Design choices justifications Security analysis time Publication Standardization 6 / 27

  17. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams Scope statement Algorithm specification Design choices justifications Security analysis time Publication Standardization 6 / 27

  18. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams Scope statement Try and break published algo- Algorithm specification rithms Design choices justifications Security analysis time Publication Standardization 6 / 27

  19. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams Scope statement Try and break published algo- Algorithm specification rithms Design choices justifications Security analysis time Publication Standardization 6 / 27

  20. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams Scope statement Try and break published algo- Algorithm specification rithms Design Unbroken algo- choices rithm are even- justifications tually trusted Security analysis time Publication Standardization 6 / 27

  21. Introduction How do we make cryptographic algorithms? “Cryptographic Pipeline” Fundamental Research Design Public Analysis Deployment Academic community Industry Small teams Scope statement Try and break published algo- Algorithm Implements al- specification rithms gorithm in ac- Design Unbroken algo- tual products choices rithm are even- justifications tually trusted Security analysis time Publication Standardization 6 / 27

  22. Introduction How do we make cryptographic algorithms? What about my thesis? 7 / 27

  23. Introduction How do we make cryptographic algorithms? What about my thesis? Funded by the FNR ( ACRYPT Project) 7 / 27

  24. Introduction How do we make cryptographic algorithms? 3 Different Directions Lightweight Cryptography 5 papers (FSE, ASIACRYPT, JoCEn), 2 invited talks 1 new block cipher 8 / 27

  25. Introduction How do we make cryptographic algorithms? 3 Different Directions Lightweight Cryptography 5 papers (FSE, ASIACRYPT, JoCEn), 2 invited talks 1 new block cipher S-Box Reverse-Engineering 8 conference papers (CRYPTO, EUROCRYPT...), 7 invited talks Discussions with ISO 8 / 27

  26. Introduction How do we make cryptographic algorithms? 3 Different Directions Lightweight Cryptography 5 papers (FSE, ASIACRYPT, JoCEn), 2 invited talks 1 new block cipher S-Box Reverse-Engineering 8 conference papers (CRYPTO, EUROCRYPT...), 7 invited talks Discussions with ISO Purposefully Hard Cryptography 1 paper (ASIACRYPT) 1 patent (+1 paper under submission) 8 / 27

  27. Introduction How do we make cryptographic algorithms? Outline 1 Introduction 2 Lightweight Cryptography 3 S-Box Reverse-Engineering 4 Conclusion 9 / 27

  28. Lightweight Cryptography Outline 1 Introduction 2 Lightweight Cryptography 3 S-Box Reverse-Engineering 4 Conclusion 9 / 27

  29. Lightweight Cryptography What is it? Internet of Things Everything is being connected to the internet. 10 / 27

  30. Lightweight Cryptography What is it? Internet of Things Everything 10 / 27

  31. Lightweight Cryptography What is it? Internet of Things Everything 10 / 27

  32. Lightweight Cryptography What is it? Internet of Things Everything 10 / 27

  33. Lightweight Cryptography What is it? Security “In IoT, the S is for Security.” Internet-enabled devices have security flaws. Security is an aferthought (at best). 11 / 27

  34. Lightweight Cryptography What is it? Security “In IoT, the S is for Security.” Internet-enabled devices have security flaws. Security is an aferthought (at best). Security has a cost in terms of engineering... ... and computationnal resources! 11 / 27

  35. Lightweight Cryptography What is it? Lightweight Cryptography Lightweight cryptography uses litle resources. 12 / 27

  36. Lightweight Cryptography What is it? Lightweight Cryptography Lightweight cryptography uses litle resources. LWC is a very active research area! 12 / 27

  37. Lightweight Cryptography Our Contributions Overview Fundamental Research Design Public Analysis Deployment 13 / 27

  38. Lightweight Cryptography Our Contributions Overview Fundamental Research • Extensive survey of the state of the art Design Public Analysis Deployment 13 / 27

  39. Lightweight Cryptography Our Contributions Overview Fundamental Research • Extensive survey of the state of the art • Invention of a new design strategy Design Public Analysis Deployment • Block cipher Sparx 13 / 27

  40. Lightweight Cryptography Our Contributions Overview Fundamental Research • Extensive survey of the state of the art • Invention of a new design strategy Design Public Analysis Deployment • Atacks on Gluon • Block cipher Sparx • Results on Prince • Results on Twine 13 / 27

  41. Lightweight Cryptography Our Contributions Highlights Atacks on Prince We won round 1 of the “PRINCE challenge” The corresponding paper was selected in the top 3 papers at FSE’15; 14 / 27

  42. Lightweight Cryptography Our Contributions Highlights Atacks on Prince We won round 1 of the “PRINCE challenge” The corresponding paper was selected in the top 3 papers at FSE’15; Sparx First ARX-based block cipher proven secure against some atacks. Design strategy re-used by third parties from Waterloo (Canada) to build sLiSCP 14 / 27

  43. Lightweight Cryptography Our Contributions Highlights Atacks on Prince We won round 1 of the “PRINCE challenge” The corresponding paper was selected in the top 3 papers at FSE’15; Sparx First ARX-based block cipher proven secure against some atacks. Design strategy re-used by third parties from Waterloo (Canada) to build sLiSCP NIST Survey greatly appreciated (and cited) by NIST in their ongoing standardization effort I presented Sparx at a NIST workshop 14 / 27

  44. S-Box Reverse-Engineering Outline 1 Introduction 2 Lightweight Cryptography 3 S-Box Reverse-Engineering 4 Conclusion 14 / 27

  45. S-Box Reverse-Engineering What is it? What is an S-Box? The “S-Box” of the last Russian standards 15 / 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin SnT, University of Luxembourg April 25, 2017 PhD Defence Introduction On S-Box Reverse-Engineering On Lightweight Cryptography Conclusion

1.76k views • 137 slides
On S-Box Reverse-Engineering: from Cryptanalysis to the Big APN Problem Lo Perrin DTU, Lyngby

On S-Box Reverse-Engineering: from Cryptanalysis to the Big APN Problem Lo Perrin DTU, Lyngby

On S-Box Reverse-Engineering: from Cryptanalysis to the Big APN Problem Lo Perrin DTU, Lyngby perrin dot leo at gmail 4th of July 2017 Boolean Functions and Their Applications The content of this talk is based on joint works with Biryukov,

1.32k views • 108 slides
Objectives Models for Cryptanalysis Cryptanalysis of Monoalphabetic Ciphers

Objectives Models for Cryptanalysis Cryptanalysis of Monoalphabetic Ciphers

Cryptanalysis of Classical Ciphers Debdeep Mukhopadhyay Assistant Professor Department of Computer Science and Engineering Indian Institute of Technology Kharagpur INDIA -721302 Objectives Models for Cryptanalysis Cryptanalysis of

657 views • 20 slides
New Algorithms for Quantum (Symmetric) Cryptanalysis Mara Naya-Plasencia 2 , Andr

New Algorithms for Quantum (Symmetric) Cryptanalysis Mara Naya-Plasencia 2 , Andr

Quantum-safe (Symmetric) Cryptography Quantum Collision Search Quantum k-xor Algorithms New Algorithms for Quantum (Symmetric) Cryptanalysis Mara Naya-Plasencia 2 , Andr Schrottenloher 2 Joint work with Andr Chailloux 2 and Lorenzo Grassi

1.63k views • 65 slides
Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a product, understand how it works Usually limited to certain aspects, not full systems Need to know a little bit about a lot of topics to gain

636 views • 11 slides
Cryptanalysis of Modern Symmetric-Key Block Ciphers [Based on A Tutorial on Linear and

Cryptanalysis of Modern Symmetric-Key Block Ciphers [Based on A Tutorial on Linear and

Cryptanalysis of Modern Symmetric-Key Block Ciphers [Based on A Tutorial on Linear and Differential Cryptanalysis by Howard Heys.] Modern block ciphers (like DES and AES): - proceed in rounds - each round has its own round key or subkey

644 views • 21 slides
S-Box Reverse-Engineering Boolean Functions, American/Russian Standards, and Butterflies Lo

S-Box Reverse-Engineering Boolean Functions, American/Russian Standards, and Butterflies Lo

S-Box Reverse-Engineering Boolean Functions, American/Russian Standards, and Butterflies Lo Perrin Based on joint works with Biryukov, Canteaut, Duval and Udovenko June 6, 2018 CECC18 Building Blocks for Symmetric Cryptography Statistics

1.28k views • 99 slides
Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work with: Li J W Li, J. Wang, Pongsajapan, Tan, Tang, M. Wang P j T T M W Outline Background Layering as optimization decomposition L

932 views • 47 slides
Introduction .NET Reverse Engineering Eric DePree Introduction to .NET Programs written for

Introduction .NET Reverse Engineering Eric DePree Introduction to .NET Programs written for

Introduction .NET Reverse Engineering Eric DePree Introduction to .NET Programs written for .NET are easy to reverse engineer. This is not in any way a fault in the design of .NET; it is simply a reality of modern, intermediate-compiled

132 views • 10 slides
Reverse Engineering Binary Messages through Design Patterns LangSec 2020 Jared Chandler

Reverse Engineering Binary Messages through Design Patterns LangSec 2020 Jared Chandler

Reverse Engineering Binary Messages through Design Patterns LangSec 2020 Jared Chandler Kathleen Fisher Tufts University Tufts University Automatic Reverse Engineering of Binary y Messages Who does this: Why: Malware Communication

778 views • 15 slides
Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team

Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team

Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team eresi@asgardlabs.org This presentation is about .. The Embedded ERESI debugger : e2dbg The Embedded ERESI tracer : etrace The ERESI reverse

849 views • 47 slides
CS 166: Information Security Reverse Engineering & Digital Rights Management Prof. Tom

CS 166: Information Security Reverse Engineering & Digital Rights Management Prof. Tom

CS 166: Information Security Reverse Engineering & Digital Rights Management Prof. Tom Austin San Jos State University SRE Software Reverse Engineering Also known as Reverse Code Engineering (RCE) Or simply reversing

1.04k views • 80 slides
Cryptanalysis of Symmetric-Key Primitives: Automated Techniques Nicky Mouha ESAT/COSIC, KU

Cryptanalysis of Symmetric-Key Primitives: Automated Techniques Nicky Mouha ESAT/COSIC, KU

Introduction Three Easy, Automated Techniques Tools for Cryptography Conclusion Cryptanalysis of Symmetric-Key Primitives: Automated Techniques Nicky Mouha ESAT/COSIC, KU Leuven, Belgium IBBT, Belgium Summer School on Tools, Mykonos

886 views • 77 slides
Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The

Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The

Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The Chinese University of Hong Kong Joint work with J.-W. Lee, A. Tang, M. Chiang and A. R. Canderbank J. Huang (CUHK) Reverse Engineering MAC Nov.

605 views • 38 slides
CMOS Reverse Engineering Advanced Digital IC Design (ETI135) Vt1 2012 Steffen Malkowsky,

CMOS Reverse Engineering Advanced Digital IC Design (ETI135) Vt1 2012 Steffen Malkowsky,

Introduction IC Layout Recovery Functional Recovery Case Studies Conclusion CMOS Reverse Engineering Advanced Digital IC Design (ETI135) Vt1 2012 Steffen Malkowsky, Christoph M uller Lund University February 10, 2012 Steffen Malkowsky,

670 views • 50 slides
Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at

Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at

Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at the last 20 years of RE and looking ahead at the next few SSTIC 2018 -- Thomas Dullien (Halvar Flake) Progress in Reverse Engineering 2010

941 views • 64 slides
!"#$%&'()*+,-%&*%(.*+,"/.0* &%.'%(+-1*'(*23-*1%#-*1+-(-*

!"#$%&'()*+,-%&*%(.*+,"/.0* &%.'%(+-1*'(*23-*1%#-*1+-(-*

!"#$%&'()*+,-%&*%(.*+,"/.0* &%.'%(+-1*'(*23-*1%#-*1+-(-* 4',,*5&'"(* 6-2*7&"$/,1'"(*8%9"&%2"&0* !%,':"&('%*5(1;2/2-*":*<-+3(",")0*

366 views • 9 slides
In this video All the steps to coming into full pose A modification for tight hamstrings

In this video All the steps to coming into full pose A modification for tight hamstrings

In this video All the steps to coming into full pose A modification for tight hamstrings Verbal tip sheet from start to finish Progression of work Working at the wall Working at the wall without touching Working away from

312 views • 6 slides
CMS Spokesperson Report - Current Status and Challenges Talk Presented to CMS RRB-45

CMS Spokesperson Report - Current Status and Challenges Talk Presented to CMS RRB-45

CMS Spokesperson Report - Current Status and Challenges Talk Presented to CMS RRB-45 CERN-RRB-2017-096 Joel Butler Oct. 24, 2017 Outline Introduction Management and Collaboration News 2017 Run 2018 Run and LS2 Computing

878 views • 72 slides
Exploiting crowd sourced platforms for statistical purposes Donatella Fazio, Marina Signore

Exploiting crowd sourced platforms for statistical purposes Donatella Fazio, Marina Signore

European Conference on Quality in Official Statistics (Q2014) Vienna, 3-5 June 2014 Exploiting crowd sourced platforms for statistical purposes Donatella Fazio, Marina Signore Italian National Institute of Statistics (Istat) Outline

275 views • 16 slides
Introduction scopes and structure the EEE station MRPC technology telescopes

Introduction scopes and structure the EEE station MRPC technology telescopes

Extreme Energy Events: an extended multi purpose cosmic ray observatory I. Gnesi on behalf of the EEE Collaboration TAUP 2019, Toyama Introduction scopes and structure the EEE station MRPC technology telescopes and Data

989 views • 29 slides
Data Mining in the Humanities Text Data Beatrice Alex balex@inf.ed.ac.uk DigitalHSS Seminar,

Data Mining in the Humanities Text Data Beatrice Alex balex@inf.ed.ac.uk DigitalHSS Seminar,

Data Mining in the Humanities Text Data Beatrice Alex balex@inf.ed.ac.uk DigitalHSS Seminar, University of Edinburgh November 19th 2013 Monday, 25 November 2013 MINING WHAT DATA? Electronic text or things that can be turned into it. Born

911 views • 51 slides
Kan-injectivity and KZ-monads Lurdes Sousa IPV / CMUC July 10, 2018 Category Theory 2018,

Kan-injectivity and KZ-monads Lurdes Sousa IPV / CMUC July 10, 2018 Category Theory 2018,

Kan-injectivity and KZ-monads Lurdes Sousa IPV / CMUC July 10, 2018 Category Theory 2018, Azores, 8-14 July Kan-injectivity and KZ-monads 1 / 52 [A. Kock, Monads for which structures are adjoints to units, 1995]: -monads (lax

1.28k views • 96 slides
waru) NoR *e-vP + c;-Vta eillt< a'v\ if* St-. 9; t +t^,L ""I-t^l- .,,[*l4t'n irt(<

waru) NoR *e-vP + c;-Vta eillt< a'v\ if* St-. 9; t +t^,L ""I-t^l- .,,[*l4t'n irt(<

T I ( u-e^h'a { \nhe*e..\ btr S iJ , Ler- P L- r+-r- ".tc'rs {l^ntr bu a- ^{ece 3 dl .a- L<- |h^f ca ^ '(aA ggz;*Lqtrn 4- ^/c &terri"^\ ht- *r-.-r, 't -\'*t >b. W(^"r"b'' t -' -l Jr.("I* t"ti &

642 views • 7 slides

More recommend