scholarly journals Algebraic Collision Attacks on Keccak

2021 ◽  
pp. 239-268
Author(s):  
Rachelle Heim Boissier ◽  
Camille Noûs ◽  
Yann Rotella
Keyword(s):  
Computational Complexity ◽  
Linear Part ◽  
Lightweight Cryptography ◽  
Collision Resistance ◽  
Round Function ◽  
Collision Attacks ◽  
Linearization Techniques

In this paper, we analyze the collision resistance of the two smallest versions of Keccak which have a width of 200 and 400 bits respectively. We show that algebraic and linearization techniques can serve collision cryptanalysis by using some interesting properties of the linear part of the round function of Keccak. We present an attack on the Keccak versions that could be used in lightweight cryptography reduced to two rounds. For Keccak[40, 160] (resp. Keccak[72, 128] and Keccak[144, 256]) our attack has a computational complexity of 273 (resp. 252.5 and 2101.5) Keccak calls.

scholarly journals Practical Key-Recovery Attack on MANTIS5

2017 ◽  
pp. 248-260
Author(s):  
Christoph Dobraunig ◽  
Maria Eichlseder ◽  
Daniel Kales ◽  
Florian Mendel
Keyword(s):  
Computational Complexity ◽  
Block Cipher ◽  
Practical Implementation ◽  
Data Complexity ◽  
Key Recovery ◽  
Round Function ◽  
Tweakable Block Cipher ◽  
Key Recovery Attack

MANTIS is a lightweight tweakable block cipher published at CRYPTO 2016. In addition to the full 14-round version, MANTIS7, the designers also propose an aggressive 10-round version, MANTIS5. The security claim for MANTIS5 is resistance against “practical attacks”, defined as related-tweak attacks with data complexity 2d less than 230 chosen plaintexts (or 240 known plaintexts), and computational complexity at most 2126−d. We present a key-recovery attack against MANTIS5 with 228 chosen plaintexts and a computational complexity of about 238 block cipher calls, which violates this claim. Our attack is based on a family of differential characteristics and exploits several properties of the lightweight round function and tweakey schedule. To verify the validity of the attack, we also provide a practical implementation which recovers the full key in about 1 core hour using 230 chosen plaintexts.

In Vitro Incorporation of Sodium Acetate-l-C14 into Leukocyte Lipids of Normal and Leukaemic Subjects as a Function of Incubation Time

1962 ◽  
Vol 02 (02) ◽  
pp. 165-172
Author(s):  
C Miras ◽  
G Lewis ◽  
J Mantzos
Keyword(s):  
Sodium Acetate ◽  
Linear Part ◽  
Lipid Synthesis ◽  
Normal Subjects ◽  
Cytostatic Agents ◽  
Time Intervals ◽  
Total Blood ◽  
Effect Of Treatment ◽  
Product Relation

Summary1. Separated leukocytes or total blood from normal subjects, untreated leukaemic patients and from leukaemic patients treated with cytostatic agents were incubated with CH3COONa-l-C14. Radioactivity of mixed lipids was measured at standard time intervals.2. The time incorporation curve observed with leukocytes from treated leukaemic patients showed after an initial linear part, a more rapid levelling off than the curves observed with leukocytes from untreated and normal subjects.3. Therefore, an indirect effect of treatment on leukocyte lipid synthesis seems to be present.4. Phospholipid and neutral lipid synthesis by leukaemic leukocytes was also studied. The results give no evidence that these fractions as a whole have any precursor-product relation.

Forecasting of Summer Monsoon Rainfall over Gangetic West Bengal, India Utilising Intrinsic Mode Functions, Linear and Neural Regression

2020 ◽  
Vol 12 (1) ◽  
pp. 60-69 ◽  
Author(s):  
Pijush Basak
Keyword(s):  
Neural Network ◽  
West Bengal ◽  
Monsoon Rainfall ◽  
Linear Part ◽  
Intrinsic Mode Functions ◽  
Quasi Biennial Oscillation ◽  
Nonlinear Part ◽  
South West ◽  
South West Monsoon ◽  
West Monsoon

The South West Monsoon rainfall data of the meteorological subdivision number 6 of India enclosing Gangetic West Bengal is shown to be decomposable into eight empirical time series, namely Intrinsic Mode Functions. This leads one to identify the first empirical mode as a nonlinear part and the remaining modes as the linear part of the data. The nonlinear part is modeled with the technique Neural Network based Generalized Regression Neural Network model technique whereas the linear part is sensibly modeled through simple regression method. The different Intrinsic modes as verified are well connected with relevant atmospheric features, namely, El Nino, Quasi-biennial Oscillation, Sunspot cycle and others. It is observed that the proposed model explains around 75% of inter annual variability (IAV) of the rainfall series of Gangetic West Bengal. The model is efficient in statistical forecasting of South West Monsoon rainfall in the region as verified from independent part of the real data. The statistical forecasts of SWM rainfall for GWB for the years 2012 and 2013 are108.71 cm and 126.21 cm respectively, where as corresponding to the actual rainfall of 93.19 cm 115.20 cm respectively which are within one standard deviation of mean rainfall.

Known-Key Attacks on Generalized Feistel Schemes with SP Round Function

2012 ◽  
Vol E95.A (9) ◽  
pp. 1550-1560 ◽  
Author(s):  
HyungChul KANG ◽  
Deukjo HONG ◽  
Dukjae MOON ◽  
Daesung KWON ◽  
Jaechul SUNG ◽  
...  
Keyword(s):  
Round Function

Recording of the Cavitation Phenomena when Modeling Flows in the Trunk Pipelines

2020 ◽  
pp. 7-14
Author(s):  
A.M. Sverchkov ◽  
◽  
S.I. Sumskoy ◽  
Keyword(s):  
Occupational Safety ◽  
Linear Part ◽  
Simple Wave ◽  
Pressure Profile ◽  
Real Problem ◽  
Flow Modeling ◽  
Oil Pipeline ◽  
Emergency Situations ◽  
Hydraulic Shocks ◽  
The Waves

In the article, it is proposed to use a numerical method based on the approach of S.K. Godunov to simulate boiling in a pipeline. The paper presents a statement of the real problem of modeling a water hammer, considering possible boiling of the transported liquid on a real object — an oil pipeline. When solving the problem, two variants of flow modeling when closing the valve installed at the end of the pipeline were carried out. In the first Наука и техника 14 Безопасность Труда в Промышленности • Occupational Safety in Industry • № 11'2020 • www.safety.ru case, the possibility of liquid boiling was not considered. In the second case, this opportunity was considered. The performed numerical simulation showed that in the pipeline in emergency situations, liquid columns can be formed, separated by the cavitation zones and oscillating in different phases, respectively, at the collapse of the cavitation zones, which serve as a kind of pressure dampers, the collisions of liquid columns occur, which can lead, depending on the ratio of velocities, to hydraulic shocks that occur not on the valves, but on the linear part of the pipeline (local hydraulic shocks). The waves from these collapses, interacting with each other, create the new pressure peaks that do not coincide with the pattern of simple wave circulation, which are predicted in the simulations that do not consider possible liquid boiling. As a resul t, the pressures reached in the pipeline during fluid hammer is significantly different from what it would be in the absence of boiling. When boiling is considered, the maximum reached pressures are 40 % higher. Moreover, this excess is repeated. The detailed analysis of the pressure profile in the pipeline is given in the article. Based on the results of solving this problem, it is concluded that when modeling pre–emergency and emergency situations in the pipeline, it is necessary to consider the process of possible liquid boiling, since sometimes, as in the presented case, the values of the pressure surges can be higher than the values of the pressure surges in the liquid without considering boiling, which increases the likelihood of emergency depressurization.

Sign in / Sign up

Export Citation Format

Share Document