[PDF] - Lectures UIHEF-sh.eu#iceeoi-K--pm=f *E##E##t ! ! ! :o) I :H PDF Document

SLIDE 1

SLIDE 2

Lectures

SLIDE 3

UIHEF-sh.eu#iceeoi-K--pm=f

!!!:o)

¥*E¥¥##¥E#⇒#t

I:H÷¥¥

N#E¥¥I#⇒I#MI#

m

.

n¥¥¥¥¥¥i÷÷¥¥¥¥¥

.

SLIDE 4 O = known 0000 0000

z=uuk~w"①

0001

years'¥÷% if

"

I 000 . 0010

ion

CK

'°o°

k

" "

p→I÷txxiEc

. ion

xnx

' # 0

⇒¥*÷÷÷÷±n

¥¥.

:÷÷÷÷÷÷÷÷÷.t÷÷÷÷÷:÷

:¥÷÷ .

, ! ! output HLF'D , k, prob . 0000 0000

SLIDE 5

Lecture

m & : :;

m

.

÷

.

SLIDE 6

amina.

E÷¥¥

, " I#¥#TI#⇒##¥7#⑤i÷÷÷ .

Haha

,

m & ! !:)

r. A#¥#TT#⇒M#eyI#y¥#

¥ :

Keith #

feel

r.at#E*n***t**t

'

⇒f

r. iI#¥¥#¥h#¥E# in.

÷ !)

" I#¥¥I##¥I¥¥T# . tI##¥##E¥7#¥F#

time

:c "

. . . .

SLIDE 7

Kick

fkz.tk

.

Milinda

p→h¥→x←

← e

f.org?.w..9fa.k

:

'

:

until

now I Initialize H

⇒

K , Aka

= 0 ' fork, E Kilkis ' Time:(Kil

kid

⇒

kink . -

K.

! ! :÷¥÷qfgc

.

"" "" "

em I

c. HE ]
Ki

Ki.Hi÷ia§i%÷÷i¥¥p÷

:*."

l

X '

Diede )

M

' , if x ' et

IK , I

kid

! ; ;

return

skegisk.e.k.tl#

SLIDE 8

th

.

I
5

/ K

, R

ka

=

Kr KEK

KEK

.

→Ttf's

× ¥7 ←

Time kitfor

k.ee

kn

: p c rwa -d

phase

Initialize hash map H .

H

:

ifor

k

, e

k , Ike

: !

!

h .

.

"Katina

.

÷÷¥ii**⇒¥

: :# ¥÷÷¥

, K backward

phase

.

for

, ki e

k, Ike

:

"

µ

:

his:c:S

' c .

if x

e- H :

!

return

kiz.kz

' , HE] .

SLIDE 9

What

to

use

for

H

Ha>hmap

→

Random

access writes

t read'

J → does it fit

in

Array

+

Sort

→ Seq access

writes t

RA reads .

Memory

Array

+ Sort (x z ) →

Seq

access writes + read . . → if it doesn't fit in

It deped.

↳ E::: :it

:

a:÷÷÷¥÷..

µqY÷§÷

"-

③ find matches

between forward and backward entries .

:¥÷÷FI÷E¥¥FIf

÷::::c

:*::*

:÷÷

,

↳

we aint'd? f!

" Tt tu expensive .

Actually

since we '

ng

have uniform random

in

0 (N)

entries ⇒ log log ( n)

SLIDE 10

Differieuhialcrgptanalg.is

SLIDE 11

p ¥sTyt¥⑦¥§E

.

Lemme : given

some

peep,

PPR -Ain

c. ④ ez

. you,

0④o'isaPR€

+ ⇒ Ain

↳ (

O ' Z 34567 PSA BC DE

Fy

i⑦⑦-

E

B

4 GAD 7038 FC 5g I z I l F ⑦ B = 5 . (x ) . 2 3 I 4 ④ G = 2 ( x ) . 4 5 1 A ④ D = 7 (xD .

Algy

g. 543¥

: : :

salep.

A B F -0C =3

compute

ECR) ④ EGP

, ⑦ 1) = day . c D 5-05 = C

if

, Hout = 7 : E F l ④ 2 = 3 . Taaul .

! counter

y # Ain =L

P

, ④ Pez = I

Houy

= (

01234567

P JA B C DE F) O O 2 4 O 20 y O O O L Z O O O → 2am = if .

SLIDE 12 I?.BE#z " Yu

% Aint

⇐

p #¥EEf¥fEfso c 'ou

to 'o :3 :{ 8193 # EEE :#

sum . .

p

, pzt " t

'

° s 7- → s

with

prob'¥az

DDT

→

Difference

Distribution

Table

.

¥ ¥6

.

4-26

2-7 D 5-3 D 7- →g s

sp

.

Att

fo

. . all Ain ' .

÷

itunes.ie . .

Row IS

④ Sfx ④ Ain ) )

it

. "

Add

Row to

DDT

. '

return DDT

.

SLIDE 13

" " "

p :¥÷÷÷⇒±¥i±n÷⇒*E

.

it

. 54.25 ' en 2-4-23 .

SLIDE 14 ⑧

I

ta

a

a b

b plaintext

.

fHf7-stoc-oI-slfI-sotcfyo-xf7oHfaa-ttft5o_oar@y.o

Pik

.

Ha

. ¥Ia

.

so

:*:÷:÷

#

. i.

add point to lez

_0

>Mf-0¥ .

⇐

pick the

he

with highest paint,

d -217ft

kz

→¥¥ki

.

LEE

c. ¥11

e. ④4) ④fff

i

'

04'F¥*

, ' C ,

ciphertext

SLIDE 15

Project

luokforprojec_T

⑦ LWC

candidates

⇒ analyze

.

① Competition

→ you de

> ing a cipher . →

Others analyse

your cipher

.

③

Automated

analysis

.

⇒ Individual

.

SLIDE 16

TCI

SLIDE 17 b b 32 . I 2 3

45

6 7 89 A B C D E F

"ooo ↳

→[f→④t

2

I °

}

§

Is

O 4000 6

→IIHF

I

¥7

13=64

I

4000 , °? 9010 B nooo

HEHE

>%.

R

fo
I

b

now

oo Rif
÷

.

¥

°4oB¥o#*

" "

'

pipe

.pe#TKToY=9iM=z-rIgg-IsfsEfso

Oo
°

§

O

00

O

4478

0610

.

SLIDE 18

Lecture 6 .

I 2 3

45

6 7 89 A B C D E F

I

2

°/→L7EoEI→ot

""

y

5

X

E

2000

IZ

woo zoo.

Inp diff

. 8

HALF

set

£

B

.¥E→÷±T¥

.

Ji

"

'

¥

A

°

→ 02000C

zoo## °

Out diff

. nooo → 2000

SLIDE 19

test diff

charfinp-diff , out
diff , nrof
samples) :
¥0 fry

counter

=

differential

, for ,

i

s nrof

samples

: Aooo ¥7702000

Ain

1 , pick

P1

uniform

random

i

,µ 2000

(

i

p, =p,

④ inp

cliff

. :

→tffse

iii:c: : :c:*:c::

I

:¥⇒:q÷µ÷

. ' i

Howl

= C ,

④ Cz

X )

' '

if Hout

⇐ out -diff :

l

; I

z-o.ie

, I , 2000 0000 I ' ,

! counter

et

.

1→Iz→*

dont

' g ,

erefurn

"

counterlnrof

sample?

20€10

Goal

.

SLIDE 20 O 2000 A 00C

the

Eto

¥::

§

A'

IF

⑤

:

"t't.s⇒¥

.

⇐#⇒¥t¥i¥¥

1¥

Et

2ooo€→→¥£k,

Q= [

④ I '

µ

¥#q→

""

9¥45#r)) -04+04!)

*

⑦ woo

HF→Et*⇐k

. = ofsflskr ')) -06 ,

)

⇒

we dont know value .

↳

→Et→Iof→o←k⑥

Q

= AR -02000

§

↳ candidate fork

, AL

E .cc '

Ap ?

Cr '

SLIDE 21 O 2000

¥→o

→to

attach ( Ain

, A.at ,

char

. rounds , pairs):

✓

char

.

I fo

;

his Ekg

:

⑤\

'

counter

=o Z l '

"t't.÷⇒⇒÷

it:c::'d::S:c: ::÷÷ . .

' l l l Cz ' = .

.oo÷⇒h÷ .. /

! !

: if

¥p

. : ;

if counters

(paint

:

HEHE

.to#-kx

!

; output

k

, as prob key .

¥¥E⇐I

. '

mp.i.si;!!

! ↳I

Em't "

ALc€\ Apa

Cr '

⇐

.

Dala :P

.

SLIDE 22

Implementation

Guide

:

hey

, = OX 1234

⑦ encrypt (decrypt

a test

.

zi6

② design

attack

. → test the characteristic . n

③

implement partial encrg.pt/deeugph

t teal

.

fo

;

he , e

④ Implement

the

attack

w .

keg guessing

.

↳

run

with

known key

.

for

his

ie Fox 1230 . .

ox12317

.

SLIDE 23