{"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00223120","sets":["6164:6165:6462:11124"]},"path":["11124"],"owner":"44499","recid":"223120","title":["SATソルバーを用いた低遅延暗号Orthrosに対する差分攻撃評価"],"pubdate":{"attribute_name":"公開日","attribute_value":"2022-10-17"},"_buckets":{"deposit":"5cdab2e0-6ae4-4689-8216-6516769fc25a"},"_deposit":{"id":"223120","pid":{"type":"depid","value":"223120","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"SATソルバーを用いた低遅延暗号Orthrosに対する差分攻撃評価","author_link":["587080","587074","587077","587078","587079","587075","587081","587076"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"SATソルバーを用いた低遅延暗号Orthrosに対する差分攻撃評価"},{"subitem_title":"SAT-based Evaluation for Differential Attacks on Orthros","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"低遅延暗号, SAT ソルバー, 差分解析","subitem_subject_scheme":"Other"}]},"item_type_id":"18","publish_date":"2022-10-17","item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_18_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"兵庫県立大学大学院情報科学研究科,"},{"subitem_text_value":"WDB株式会社"},{"subitem_text_value":"兵庫県立大学大学院情報科学研究科"},{"subitem_text_value":"兵庫県立大学大学院情報科学研究科"}]},"item_18_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"University of Hyogo","subitem_text_language":"en"},{"subitem_text_value":"WDB Kougaku","subitem_text_language":"en"},{"subitem_text_value":"University of Hyogo","subitem_text_language":"en"},{"subitem_text_value":"University of Hyogo","subitem_text_language":"en"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/223120/files/IPSJ-CSS2022065.pdf","label":"IPSJ-CSS2022065.pdf"},"date":[{"dateType":"Available","dateValue":"2024-10-17"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-CSS2022065.pdf","filesize":[{"value":"482.2 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"c8192e72-ec40-4031-b522-1f5cde9e1491","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2022 by the Information Processing Society of Japan"}]},"item_18_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"髙, 和真"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"石川, 達也"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"阪本, 光星"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"五十部, 孝典"}],"nameIdentifiers":[{}]}]},"item_18_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Kazuma, Taka","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Tatsuya, Ishikawa","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Kosei, Sakamoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Takanori, Isobe","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_5794","resourcetype":"conference paper"}]},"item_18_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"本稿では低遅延擬似ランダム関数 Orthros に対する差分攻撃耐性の評価を行う．具体的には SAT ソルバーを用いた bit 単位の差分特性の探索評価を行い，Active S-box 数の下界及び最大差分特性確率の厳密な評価を行う．結果として，Active S-box 評価については設計者評価では示されていなかった 8 ラウンドの Active S-box 数の下界を示し，8 ラウンドにおいて Orthros が Active S-box 評価の観点で差分攻撃に対して安全であることを示す．また，Orthros 内部の Branch1 及び Branch2 については，それぞれについてフルラウンド（12 ラウンド）の Active S-box 数の下界を示し，Branch1 が Branch2 それぞれ 11 ラウンドで Active S-box 評価の観点で差分攻撃に対して安全であることを示す．最大差分特性確率の評価については，設計者評価では示されていなかった 7 ラウンドまでの最大差分特性確率を示し，6 ラウンドにおいてOrthros がランダム関数と識別可能であることを示す．また，Branch1 及び Branch2 については，それぞれ 10 ラウンドまでの最大差分特性確率を示し，それぞれ 9 ラウンドの識別攻撃が可能であることを示す．","subitem_description_type":"Other"}]},"item_18_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"In this paper, we investigate the security of Orthros against differential attacks. In order to evaluate the lower bounds for the number of active S-boxes and search the optimal differential characteristic in bit level, we take advantage of a SAT-based automatic search method. As a result, we improve the designer’s results and show that the 8-round Orthros are secure against differential attacks by active Sbox-based estimations. Besides, we show that the underlying PRPs Branch1 and Branch2 are secure against differential attacks at 11 rounds. Besides, we show the optimal differential characteristics up to 7 rounds on Orthros, which have not been shown by the designer’s evaluation, and the distinguishing attack to the 6-round Orthros. In additions, we show them up to 10 rounds on both Branch1 and Branch2 and the distinguishing attacks to the 9-round Branch1 and Branch2","subitem_description_type":"Other"}]},"item_18_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"479","bibliographic_titles":[{"bibliographic_title":"コンピュータセキュリティシンポジウム2022論文集"}],"bibliographicPageStart":"472","bibliographicIssueDates":{"bibliographicIssueDate":"2022-10-17","bibliographicIssueDateType":"Issued"}}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"id":223120,"updated":"2025-01-19T13:30:31.022516+00:00","links":{},"created":"2025-01-19T01:22:59.678126+00:00"}