Skip to main content
SpringerLink
Log in

Lightweight MDS Serial-Type Matrices with Minimal Fixed XOR Count

  • Conference paper
  • First Online:
Progress in Cryptology – AFRICACRYPT 2018 (AFRICACRYPT 2018)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 10831))

Included in the following conference series:

Abstract

Many block ciphers and hash functions require the diffusion property of Maximum Distance Separable (MDS) matrices. Serial matrices with the MDS property obtain a trade-off between area requirement and clock cycle performance to meet the needs of lightweight cryptography. In this paper, we propose a new class of serial-type matrices called Diagonal-Serial Invertible (DSI) matrices with the sparse property. These matrices have a fixed XOR count (contributed by the connecting XORs) which is half that of existing matrices. We prove that for matrices of order 4, our construction gives the matrix with the lowest possible fixed XOR cost. We also introduce the Reversible Implementation (RI) property, which allows the inverse matrix to be implemented using the similar hardware resource as the forward matrix, even when the two matrices have different finite field entries. This allows us to search for serial-type matrices which are lightweight in both directions by just focusing on the forward direction. We obtain MDS matrices which outperform existing lightweight (involutory) matrices.

S. M. Sim—Supported by the Singapore National Research Foundation Fellowship 2012 (NRF-NRFF2012-06).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 64.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 84.00
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    The indices starts from 1 for the convenience of latter discussions.

  2. 2.

    This observation has also been pointed out in [8].

  3. 3.

    We can multiply the XOR counts of all matrices in Table 2 by 2 to get matrices over \(\mathrm {GF}(2^8)\) but we do not include most of them in Table 3 to prevent congestion. But we can easily see that the best (sparse DSI) matrices we get directly from \(\mathrm {GF}(2^8)/\mathsf {0x1c3}\) do outperform 2 copies of the best matrices over \(\mathrm {GF}(2^4)\) for \(5 \le k \le 7\).

  4. 4.

    https://eprint.iacr.org/2017/1084.

  5. 5.

    Given that sparse DSI matrices of order 4 can be 4-MDS, having \(q>8\) would be a bad trade-off between area and clock cycle.

  6. 6.

    \((1\ 2\ 3\ 4)\) is a cycle permutation expression, where the component in the 1st position goes to 2nd position, 2nd to 3rd, 3rd to 4th, and finally the component in the last position goes to the 1st position.

References

  1. Shannon, C.E.: Communication theory of secrecy systems. Bell Syst. Tech. J. 28(4), 656–715 (1949)

    Article  MathSciNet  MATH  Google Scholar 

  2. Daemen, J., Rijmen, V.: The Design of Rijndael: AES - The Advanced Encryption Standard. Information Security and Cryptography. Springer, Heidelberg (2002). https://doi.org/10.1007/978-3-662-04722-4

    Book  MATH  Google Scholar 

  3. Aoki, K., Ichikawa, T., Kanda, M., Matsui, M., Moriai, S., Nakajima, J., Tokita, T.: Camellia: a 128-bit block cipher suitable for multiple platforms — design and analysis. In: Stinson, D.R., Tavares, S. (eds.) SAC 2000. LNCS, vol. 2012, pp. 39–56. Springer, Heidelberg (2001). https://doi.org/10.1007/3-540-44983-3_4

    Chapter  Google Scholar 

  4. Guo, J., Peyrin, T., Poschmann, A., Robshaw, M.J.B.: The LED block cipher. In: CHES, pp. 326–341 (2011)

    Google Scholar 

  5. Guo, J., Peyrin, T., Poschmann, A.: The PHOTON family of lightweight hash functions. In: Rogaway, P. (ed.) CRYPTO 2011. LNCS, vol. 6841, pp. 222–239. Springer, Heidelberg (2011). https://doi.org/10.1007/978-3-642-22792-9_13

    Chapter  Google Scholar 

  6. Sim, S.M., Khoo, K., Oggier, F., Peyrin, T.: Lightweight MDS involution matrices. Cryptology ePrint Archive, Report 2015/258 (2015). http://eprint.iacr.org/2015/258

  7. Liu, M., Sim, S.M.: Lightweight MDS generalized circulant matrices (full version). Cryptology ePrint Archive, Report 2016/186 (2016). http://eprint.iacr.org/2016/186

  8. Beierle, C., Kranz, T., Leander, G.: Lightweight multiplication in GF(\(2^n\)) with applications to MDS matrices. Cryptology ePrint Archive, Report 2016/119 (2016). http://eprint.iacr.org/2016/119

  9. Li, Y., Wang, M.: On the construction of lightweight circulant involutory MDS matrices. In: Peyrin, T. (ed.) FSE 2016. LNCS, vol. 9783, pp. 121–139. Springer, Heidelberg (2016). https://doi.org/10.1007/978-3-662-52993-5_7

    Chapter  Google Scholar 

  10. Vaudenay, S.: On the need for multipermutations: cryptanalysis of MD4 and SAFER. In: Preneel, B. (ed.) FSE 1994. LNCS, vol. 1008, pp. 286–297. Springer, Heidelberg (1995). https://doi.org/10.1007/3-540-60590-8_22

    Chapter  Google Scholar 

  11. Mattson Jr., H.F.: The theory of error-correcting codes (F. J. MacWilliams and N. J. A. Sloane). SIAM Rev. 22(4), 513–519 (1980)

    Article  Google Scholar 

  12. Khoo, K., Peyrin, T., Poschmann, A.Y., Yap, H.: FOAM: searching for hardware-optimal SPN structures and components with a fair comparison. Cryptology ePrint Archive, Report 2014/530 (2014). http://eprint.iacr.org/2014/530

  13. Jean, J., Peyrin, T., Sim, S.M.: Optimizing implementations of lightweight building blocks. Cryptology ePrint Archive, Report 2017/101 (2017). http://eprint.iacr.org/2017/101

  14. Sarkar, S., Syed, H.: Lightweight diffusion layer: importance of toeplitz matrices. IACR Trans. Symmetric Cryptol. 2016(1), 95–113 (2016)

    Google Scholar 

  15. Gupta, K.C., Ray, I.G.: On constructions of MDS matrices from companion matrices for lightweight cryptography. Cryptology ePrint Archive, Report 2013/056 (2013). http://eprint.iacr.org/2013/056

  16. Wu, S., Wang, M., Wu, W.: Recursive diffusion layers for (lightweight) block ciphers and hash functions. In: Knudsen, L.R., Wu, H. (eds.) SAC 2012. LNCS, vol. 7707, pp. 355–371. Springer, Heidelberg (2013). https://doi.org/10.1007/978-3-642-35999-6_23

    Chapter  Google Scholar 

  17. Sarkar, S., Syed, H., Sadhukhan, R., Mukhopadhyay, D.: Lightweight design choices for LED-like block ciphers. In: Patra, A., Smart, N.P. (eds.) INDOCRYPT 2017. LNCS, vol. 10698, pp. 267–281. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-71667-1_14

    Chapter  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. NUS High School of Math and Science, Singapore, Singapore

    Dylan Toh & Jacob Teo

  2. DSO National Laboratories, Singapore, Singapore

    Khoongming Khoo & Siang Meng Sim

  3. Nanyang Technological University, Singapore, Singapore

    Siang Meng Sim

Authors
  1. Dylan Toh
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jacob Teo
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Khoongming Khoo
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Siang Meng Sim
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Siang Meng Sim .

Editor information

Editors and Affiliations

  1. Fondation Partenariale de Sorbonne Université, Paris, France

    Antoine Joux

  2. Université de Caen, Caen, France

    Abderrahmane Nitaj

  3. Al Akhawayn University, Ifrane, Morocco

    Tajjeeddine Rachidi

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG, part of Springer Nature

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Toh, D., Teo, J., Khoo, K., Sim, S.M. (2018). Lightweight MDS Serial-Type Matrices with Minimal Fixed XOR Count. In: Joux, A., Nitaj, A., Rachidi, T. (eds) Progress in Cryptology – AFRICACRYPT 2018. AFRICACRYPT 2018. Lecture Notes in Computer Science(), vol 10831. Springer, Cham. https://doi.org/10.1007/978-3-319-89339-6_4

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-89339-6_4

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-89338-9

  • Online ISBN: 978-3-319-89339-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation