On the primitivity of Lai-Massey schemes

From MaRDI portal
Publication:6352902

DOI10.1007/S00009-021-01781-XarXiv2011.01665MaRDI QIDQ6352902FDOQ6352902


Authors: Riccardo Aragona, Roberto Civino Edit this on Wikidata


Publication date: 3 November 2020

Abstract: In symmetric cryptography, the round functions used as building blocks for iterated block ciphers are often obtained as the composition of different layers providing confusion and diffusion. The study of the conditions on such layers which make the group generated by the round functions of a block cipher a primitive group has been addressed in the past years, both in the case of Substitution Permutation Networks and Feistel Networks, giving to block cipher designers the receipt to avoid the imprimitivity attack. In this paper a similar study is proposed on the subject of the Lai-Massey scheme, a framework which combines both Substitution Permutation Network and Feistel Network features. Its resistance to the imprimitivity attack is obtained as a consequence of a more general result in which the problem of proving the primitivity of the Lai-Massey scheme is reduced to the simpler one of proving the primitivity of the group generated by the round functions of a strictly related Substitution Permutation Network.







Mathematics Subject Classification ID

Cryptography (94A60) Primitive groups (20B15) Subgroups of symmetric groups (20B35)







This page was built for publication: On the primitivity of Lai-Massey schemes

Report a bug (only for logged in users!)Click here to report a bug for this page (MaRDI item Q6352902)

Retrieved from "https://portal.mardi4nfdi.de/w/index.php?title=Publication:6352902&oldid=35970136"
Powered by MediaWiki