• Programme
• Writing talks and theses
• Theses topics
• Teaching
  • Winter 2017
  • Summer 2017
  • IPEC Winter 2017
  • Winter 2016/2017
  • IPEC Summer 2016
  • Summer 2016
  • IPEC Winter 2016
  • Winter 2015/2016
  • IPEC Summer 2015
  • Summer 2015
  • IPEC Winter 2015
  • Winter 2014/2015
  • IPEC Summer 2014
  • Summer 2014
  • IPEC Winter 2014
  • Winter 2013/2014
  • IPEC Summer 2013
  • Summer 2013
  • IPEC Winter 2013
  • Winter 2012/2013
  • IPEC Summer 2012
  • Summer 2012
  • The art of cryptography: security, reductions, and group cryptography
  • Esecurity: secure internet & e-cash
  • Seminar Advanced Topics in Cryptography
  • Oberseminar Computer Security, Summer 2012
  • IPEC Winter 2012
  • Winter 2011/2012
  • IPEC Summer 2011
  • Summer 2011
  • IPEC Winter 2011
  • Winter 2010/2011
  • IPEC Summer 2010
  • Summer 2010
  • IPEC Winter 2010
  • Winter 2009/2010
  • IPEC Summer 2009
  • Summer 2009
  • IPEC Winter 2009
  • Winter 2008/2009
  • IPEC Summer 2008
  • Summer 2008
  • IPEC Winter 2008
  • Winter 2007/2008
  • IPEC Summer 2007
  • Summer 2007
  • IPEC Winter 2007
  • Winter 2006/2007
  • IPEC Summer 2006
  • Summer 2006
  • IPEC Winter 2006
  • Winter 2005/2006
• Special events
• crypt@b-it
• Schüler-Krypto

DESL+: An improved lightweight variant of the data encryption standard

Daniel Loebenberger (b-it cosec)

Thursday 10 May 2012, 15.00, b-it 1.25 (cosec meeting room)

DESL is a lightweight variant of the data encryption standard (DES) that uses just a single S-box instead of eight different ones, while keeping the rest of the algorithm identical to DES. To ensure that the simplification does not impose new security risks, one has to carefully select this single S-box and show that the simplified algorithm is still resistant against known attacks, like differential and linear cryptanalysis.

In this talk we discuss in detail the development of the cryptographically relevant properties of S-boxes used in DES-like ciphers. Stronger requirements on S-boxes greatly simplify the security analysis. In the past these properties have never been used since one did not find examples fulfilling them. We present solutions and explain how we found them in a search tree with roughly 10^{^14} nodes.

Afterwards, we analyze thoroughly the cryptographic properties of the resulting algorithm revealing some hidden complications which may possibly lead to better attacks against DES or DESL.

This is joint work with Michael Nüsken.