tea analysis using genetic programming
play

TEA analysis using genetic programming Karel Kub cek, - PowerPoint PPT Presentation

Dec 01, 2023 •146 likes •287 views

TEA analysis using genetic programming Karel Kub cek, karel-kubicek@mail.muni.cz Faculty of Informatics, Masaryk University December 3, 2015 1 / 13 Motivation Cipher output should look like random data but it is completely

  1. TEA analysis using genetic programming Karel Kub´ ıˇ cek, karel-kubicek@mail.muni.cz Faculty of Informatics, Masaryk University December 3, 2015 1 / 13

  2. Motivation Cipher output should look like random data but it is completely deterministic If we can distinguish between cipher output and truly random data, cipher is not considered to be secure used as one of the test for AES candidate Randomness testing can be automatized to save expensive time of skilled cryptanalyst 2 / 13

  3. Common way of randomness testing – statistical batteries Common criteria: for example monobit test From pros to cons: quick interpret but may be hard to design Closed set of tests there exist nonrandom data, s.t. pass tests 3 / 13

  4. Tiny Encryption Algorithm Simple structure Blocks of 64 bits, 128 bits key Feistel network, 32 rounds Currently weak (related-key attack) 4 / 13

  5. Tiny Encryption Algorithm Simple structure Blocks of 64 bits, 128 bits key Feistel network, 32 rounds Currently weak (related-key attack) Why to test TEA? used by other teams ([HSIR02], [HI04], [Hu+10]) with same idea as benchmark they evolved a mask to restrict the input 4 / 13

  6. EACirc – software-emulated electronic circuit We want to create tests automatically IN IN IN IN IN IN IN IN 0 1 2 3 4 5 6 7 AND AND CYCR CYCR CYCR CYCR CONS ROTR 8 133 22 106 155 121 110 46 CYCR NOT ROTL CYCL NAND NOR CYCR ROTL 17 72 246 66 61 216 63 231 ROTL NOR CYCR NOP BSLC NOP CYCR NAND 39 226 229 59 150 181 60 202 NOT CYCL NOP NOT XOR XOR CYCL XOR 252 75 1 130 104 23 188 19 CYCR 252 OUT 0 5 / 13

  7. EACirc – process Generate 2 sets of test vectors 1 output of the cipher 2 truly random data – QRNG (from physical source) let the distinguisher choose, which vector is random and which is nonrandom # correct quesses fitness is # test vectors count 6 / 13

  8. Results – Plaintext mode: counter Plaintext: counter incremented by one for each test vector EACirc 1 a nodes without shifts and rotations EACirc 1 b shifts and rotations enabled Rounds NIST STS Dieharder EACirc 1 a EACirc 1 b 1 1/162 0/20 100 100 2 1/162 0/20 100 100 3 27/188 1.5/20 100 100 4 183/188 6.0/20 (5.0) 100 5 188/188 16.5/20 (3.0) (5.3) Expected 188/188 20/20 (5.0) (5.0) 7 / 13

  9. Results – Plaintext mode: strict avalanche criterion Plaintext: vector with two almost identical parts (first is random) differing only in a single bit Rounds NIST STS Dieharder EACirc 2 1 29/188 2.5/20 100 2 67/188 2.5/20 100 3 (186)/188 7.0/20 100 4 (187)/188 8.5/20 100 5 (188)/188 16.0/20 (4.5) 8 / 13

  10. Results – interpretation 4 rounds TEA distinguisher (fitness 99%) for counter plaintext IN IN IN IN IN IN IN IN 0 1 2 3 4 5 6 7 AND AND CYCR CYCR CYCR CYCR CONS ROTR 8 133 22 106 155 121 110 46 CYCR NOT ROTL CYCL NAND NOR CYCR ROTL 17 72 246 66 61 216 63 231 ROTL NOR CYCR NOP BSLC NOP CYCR NAND 39 226 229 59 150 181 60 202 NOT CYCL NOP NOT XOR XOR CYCL XOR 252 75 1 130 104 23 188 19 CYCR 252 OUT 0 9 / 13

  11. Results – interpretation 4 rounds TEA distinguisher (fitness 99%) for SAC plaintext IN IN IN IN IN IN IN IN IN IN IN IN IN IN IN IN 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 OR CONS BSLC NOT CONS BSLC NOT NAND 108 124 163 168 155 213 205 200 CYCR AND ROTL CYCL NAND OR ROTR XOR 170 65 241 112 157 161 78 116 NOT AND XOR BSLC NOT OR BSLC ROTL 100 251 194 237 111 183 98 100 NOT ROTR NAND NAND OR ROTR ROTR XOR 182 146 204 33 255 127 100 156 NOT 112 OUT 0 10 / 13

  12. Future plans Better analysis of defects in data. ”Give us your data” website 11 / 13

  13. Questions Questions? Full version of MKB paper on http://crcs.cz/papers/mkb2015 12 / 13

  14. Bibliography J. C. Hern´ andez and P. Isasi, “Finding Efficient Distinguishers for Cryptographic Mappings, with an Application to the Block Cipher TEA”, Computational Intelligence , vol. 20, no. 3, pp. 517–525, 2004. J. C. Hern´ andez, J. M. Sierra, P. Isasi, and A. Ribagorda, “Genetic Cryptoanalysis of Two Rounds TEA”, in Computational Science—ICCS 2002 , Springer, 2002, pp. 1024–1031. W. Hu et al. , “Cryptanalysis of TEA Using Quantum-Inspired Genetic Algorithms”, Journal of Software Engineering and Applications , vol. 3, no. 01, p. 50, 2010. 13 / 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Genetic Programming What is it? Genetic Programming Genetic programming (GP) is an

Genetic Programming What is it? Genetic Programming Genetic programming (GP) is an

Genetic Programming What is it? Genetic Programming Genetic programming (GP) is an automated method for creating a working computer program from a high-level problem statement of a problem. Genetic programming starts from a high-

197 views • 8 slides
GENETIC PROGRAMMING John R. Koza Foresight Institute Workshop May 28, 2017 GENETIC PROGRAMMING

GENETIC PROGRAMMING John R. Koza Foresight Institute Workshop May 28, 2017 GENETIC PROGRAMMING

GENETIC PROGRAMMING John R. Koza Foresight Institute Workshop May 28, 2017 GENETIC PROGRAMMING MAIN POINT No. 1 G e n e t i c p r o g r a m m i n g n o w routinely delivers high-return human-competitive machine intelligence MAIN POINT

926 views • 91 slides
Mathematical Analysis of Genetic Algorithms Genetic Algorithms are not appropriate for

Mathematical Analysis of Genetic Algorithms Genetic Algorithms are not appropriate for

Mathematical Analysis of Genetic Algorithms Genetic Algorithms are not appropriate for certain problems where finding the exact global optimum is required. Genetic Algorithms are non-deterministic. However, there are theories about

271 views • 5 slides
GENETIC PROGRAMMING OF AUTONOMOUS AGENTS Scott ODell Advisors Dr Joel Schipper Dr Arnold

GENETIC PROGRAMMING OF AUTONOMOUS AGENTS Scott ODell Advisors Dr Joel Schipper Dr Arnold

GENETIC PROGRAMMING OF AUTONOMOUS AGENTS Scott ODell Advisors Dr Joel Schipper Dr Arnold Patton Bradley University 1 GPAA Genetic Programming (GP) Project Description Results Conclusion 2 GPAA Genetic Programming

484 views • 32 slides
Towards Knowledge-guided Genetic Improvement [1] GI@ICSE 3. July 2020 Abstract -- Grammar-guided

Towards Knowledge-guided Genetic Improvement [1] GI@ICSE 3. July 2020 Abstract -- Grammar-guided

Oliver Krauss (presenting), Hanspeter Mssenbck, Michael Affenzeller Towards Knowledge-guided Genetic Improvement [1] GI@ICSE 3. July 2020 Abstract -- Grammar-guided Genetic Programming -- Tree-based Genetic Programming -- combined into

549 views • 9 slides
ON THE USE OF GENETIC PROGRAMMING Adam C. Jensen and Betty H.C. Cheng. 2010. In Proceedings of

ON THE USE OF GENETIC PROGRAMMING Adam C. Jensen and Betty H.C. Cheng. 2010. In Proceedings of

2/27/2014 ON THE USE OF GENETIC PROGRAMMING Adam C. Jensen and Betty H.C. Cheng. 2010. In Proceedings of FOR AUTOMATED REFACTORING AND THE the 12th annual conference on Genetic and evolutionary INTRODUCTION OF DESIGN PATTERNS computation

233 views • 11 slides
Introduction to characters and parsimony analysis Genetic Relationships Genetic relationships

Introduction to characters and parsimony analysis Genetic Relationships Genetic relationships

Introduction to characters and parsimony analysis Genetic Relationships Genetic relationships exist between individuals within populations These include ancestor-descendent relationships and more indirect relationships based on common

990 views • 66 slides
Overview 111111111111111111111333333333333333333333222222222222222222222 I Introduction II

Overview 111111111111111111111333333333333333333333222222222222222222222 I Introduction II

Overview 111111111111111111111333333333333333333333222222222222222222222 I Introduction II Cartesian genetic programming Cell Programming: French III Developmental Cartesian genetic programming IV Evolving growing 2-D maps Flags/Boolean

103 views • 6 slides
Improving 3D Medical Image Registration CUDA Software with Genetic Programming W. B. Langdon

Improving 3D Medical Image Registration CUDA Software with Genetic Programming W. B. Langdon

Improving 3D Medical Image Registration CUDA Software with Genetic Programming W. B. Langdon Centre for Research on Evolution, Search and Testing Computer Science, UCL, London GISMOE: Genetic Improvement of Software for Multiple Objectives

725 views • 46 slides
Term Rewriting with Genetic Programming or, unfortunately, writing a lot of code that attempts

Term Rewriting with Genetic Programming or, unfortunately, writing a lot of code that attempts

Term Rewriting with Genetic Programming or, unfortunately, writing a lot of code that attempts to do term rewriting with genetic programming, but doesnt actually work Rewrite simplification of Prop Simplification: representing a term in an

532 views • 38 slides
Gen-O-Fix Embedded Genetic Improvement Programming via Reflection Jerry.Swan@cs.stir.ac.uk

Gen-O-Fix Embedded Genetic Improvement Programming via Reflection Jerry.Swan@cs.stir.ac.uk

Introduction Genetic Improvement Scala Gen-O-Fix Summary References Gen-O-Fix Embedded Genetic Improvement Programming via Reflection Jerry.Swan@cs.stir.ac.uk Michael.Epitropakis@cs.stir.ac.uk John.Woodward@cs.stir.ac.uk October 11, 2013

447 views • 20 slides
Last time Genetics and evolution Genetic algorithms Assignment 4 Assignment 3 11/2

Last time Genetics and evolution Genetic algorithms Assignment 4 Assignment 3 11/2

Last time Genetics and evolution Genetic algorithms Assignment 4 Assignment 3 11/2 - 08 Emergent Systems, Jonny Pettersson, UmU Outline for today Evolutionary computation Overview Genetic programming Genetic

398 views • 10 slides
Genetic The RGP Package Programming Contents Theory of Evolution Evolutionary

Genetic The RGP Package Programming Contents Theory of Evolution Evolutionary

By: Thomas Minkowski Genetic The RGP Package Programming Contents Theory of Evolution Evolutionary Computation Genetic Algorithms GA Operators RGP Package Overview RGP Package Operators Symbolic Regression

583 views • 23 slides
SYNCHRONIZED, CONDITIONAL, GENETIC CHEMOTAXIS PROGRAMMING Our Story Forest Molecular Genetics

SYNCHRONIZED, CONDITIONAL, GENETIC CHEMOTAXIS PROGRAMMING Our Story Forest Molecular Genetics

SYNCHRONIZED, CONDITIONAL, GENETIC CHEMOTAXIS PROGRAMMING Our Story Forest Molecular Genetics research group community project Winners of the prestigious dot furthest from any other dot award Time Frame Background Chemotactic programming

560 views • 23 slides
Using Genetic Algorithms for Maximizing Technical Efficiency in Data Envelopment Analysis Juan

Using Genetic Algorithms for Maximizing Technical Efficiency in Data Envelopment Analysis Juan

Data Envelopment Analysis Valid Solutions Genetic algorithm Hybrid metaheuristics Conclusions and future works Using Genetic Algorithms for Maximizing Technical Efficiency in Data Envelopment Analysis Juan Aparicio 1 enez 2 Domingo Gim

195 views • 17 slides
Last time Genetics and evolution Genetic algorithms 4/2 - 10 Emergent Systems, Jonny

Last time Genetics and evolution Genetic algorithms 4/2 - 10 Emergent Systems, Jonny

Last time Genetics and evolution Genetic algorithms 4/2 - 10 Emergent Systems, Jonny Pettersson, UmU Outline for today Evolutionary computation Overview Genetic programming Genetic algorithms Genetic algorithms

400 views • 12 slides
Chapter3 Chapter3 Public-Key Cryptography and Public-Key Cryptography and Message

Chapter3 Chapter3 Public-Key Cryptography and Public-Key Cryptography and Message

Chapter3 Chapter3 Public-Key Cryptography and Public-Key Cryptography and Message Authentication Message Authentication Henric Johnson Blekinge Institute of Technology, Sweden http://www.its.bth.se/staff/hjo/ henric.johnson@bth.se Henric

576 views • 28 slides
{ Erin Gill, City of Knoxville Director of Sustainability ETQG PlainTalk Conference 2016

{ Erin Gill, City of Knoxville Director of Sustainability ETQG PlainTalk Conference 2016

Climate Resiliency in East Tennessee { Erin Gill, City of Knoxville Director of Sustainability ETQG PlainTalk Conference 2016 Sustainability the ability to meet our current needs without compromising the ability of future generations

921 views • 34 slides
Computer Systems Security Dr. Ayman Abdel-Hamid College of Computing and Information Technology

Computer Systems Security Dr. Ayman Abdel-Hamid College of Computing and Information Technology

Computer Systems Security Dr. Ayman Abdel-Hamid College of Computing and Information Technology Arab Academy for Science & Technology and Maritime Transport Chapter 9 Public-Key Cryptography and RSA CSS Dr. Ayman Abdel-Hamid 1 Outline

555 views • 19 slides
Molecular Modeling of Proteins O. Michielin, SIB/LICR Molecular Modeling of Proteins Lecture

Molecular Modeling of Proteins O. Michielin, SIB/LICR Molecular Modeling of Proteins Lecture

Molecular Modeling of Proteins O. Michielin, SIB/LICR Molecular Modeling of Proteins Lecture Plan: - Central role of partition function - Review molecular interactions - Modeling of molecular interactions: CHARMM force field - Recent

867 views • 45 slides
The Continuous -Calculus: A Process Algebra for Biochemical Modelling Ian Stark and Marek

The Continuous -Calculus: A Process Algebra for Biochemical Modelling Ian Stark and Marek

The Continuous -Calculus: A Process Algebra for Biochemical Modelling Ian Stark and Marek Kwiatkowski Laboratory for Foundations of Computer Science School of Informatics The University of Edinburgh Friday 26 February 2010 N I V E U R

762 views • 52 slides
Multiple Structural Positions of Wh -Phrases: Hittite-Armenian Connection? Andrej V. Sideltsev

Multiple Structural Positions of Wh -Phrases: Hittite-Armenian Connection? Andrej V. Sideltsev

Armenian Language Contacts through the Ages ILI RAN, S.Petersburg 12-15 May 2015 Multiple Structural Positions of Wh -Phrases: Hittite-Armenian Connection? Andrej V. Sideltsev Institute of Linguistics, RAN, Moscow 0. Introduction. Both Armenian

407 views • 5 slides
1 Adaptors Communicating Error Detection datagram EDC= Error Detection and Correction bits

1 Adaptors Communicating Error Detection datagram EDC= Error Detection and Correction bits

Network Layer Overview: The Data Link Layer network layer services virtual circuit and datagram Goals: networks Today Our goals: whats inside a router? understand principles link layer services understand principles

536 views • 8 slides
Introduction to C in Linux/Unix COMP 1002/1402 Writing a Novel Process Determine ideas Story

Introduction to C in Linux/Unix COMP 1002/1402 Writing a Novel Process Determine ideas Story

Introduction to C in Linux/Unix COMP 1002/1402 Writing a Novel Process Determine ideas Story features Write book (Mystery, Contact publisher metaphors) Editing Book (Novel) Book language (English, French) 1 Creating a program

736 views • 24 slides

More recommend