? 基于Feistel类型的白盒加密方案
Journal of Computer Science and Technology
Quick Search in JCST
 Advanced Search 
      Home | PrePrint | SiteMap | Contact Us | Help
 
Indexed by   SCIE, EI ...
Bimonthly    Since 1986
Journal of Computer Science and Technology 2017, Vol. 32 Issue (2) :386-395    DOI: 10.1007/s11390-017-1727-x
Regular Paper << Previous Articles | Next Articles >>
基于Feistel类型的白盒加密方案
Ting-Ting Lin1,2, Xue-Jia Lai1,*, Wei-Jia Xue1, Yin Jia1
1 Cryptography and Information Security Laboratory, Department of Computer Science, Shanghai Jiao Tong University Shanghai 200240, China;
2 Irdeto Canada, Ottawa, Ontario, K2K 3G5, Canada
A New Feistel-Type White-Box Encryption Scheme
Ting-Ting Lin1,2, Xue-Jia Lai1,*, Wei-Jia Xue1, Yin Jia1
1 Cryptography and Information Security Laboratory, Department of Computer Science, Shanghai Jiao Tong University Shanghai 200240, China;
2 Irdeto Canada, Ottawa, Ontario, K2K 3G5, Canada

摘要
参考文献
相关文章
Download: [PDF 299KB]  
摘要 白盒攻击是一种新的攻击场景,它假设密码学软件在一个完全不可信任的终端运行,所有的实现细节都能被攻击者掌控。目前几乎所有的白盒方案都被攻破。本文我们提出了一种白盒加密方案,它不再是混淆已有算法,而是一种新的方案。我们的新方案基于非平衡Feistel网络和ASASASA结构(A表示仿射,S表示置换)。本方案有可选的输入分组长度,并且由于它的空间需求只随着分组长度呈线性变化,所以与其它方案相比更加节省空间。此外,我们的方案不仅有很大的白盒多样性和白盒含混度,还由于它的结构特殊能够避开目前已有的针对已有算法白盒实现以及ASASASA结构的攻击。最后,我们提出了一种关于等价密钥的白盒安全性定义,并证明我们的方案满足这个安全定义。
关键词白盒   等价密钥   Feistel网络   密码学:ASASASA     
Abstract: The white-box attack is a new attack context in which it is assumed that cryptographic software is implemented on an un-trusted platform and all the implementation details are controlled by the attackers. So far, almost all white-box solutions have been broken. In this study, we propose a white-box encryption scheme that is not a variant of obfuscating existing ciphers but a completely new solution. The new scheme is based on the unbalanced Feistel network as well as the ASASASA (where "A" means affine, and "S" means substitution) structure. It has an optional input block size and is suitable for saving space compared with other solutions because the space requirement grows slowly (linearly) with the growth of block size. Moreover, our scheme not only has huge white-box diversity and white-box ambiguity but also has a particular construction to bypass public white-box cryptanalysis techniques, including attacks aimed at white-box variants of existing ciphers and attacks specific to the ASASASA structure. More precisely, we present a definition of white-box security with regard to equivalent key, and prove that our scheme satisfies such security requirement.
Keywordswhite-box   equivalent key   Feistel network   cryptography   ASASASA     
Received 2015-12-01;
本文基金:

This work was supported by the National Natural Science Foundation of China under Grant Nos. 61272440, 61472251, and U1536101, and China Postdoctoral Science Foundation under Grant Nos. 2013M531174 and 2014T70417.

通讯作者: Xue-Jia Lai     Email: lai-xj@cs.sjtu.edu.cn
About author: Ting-Ting Lin received her Ph.D. degree in computer science from Shanghai Jiao Tong University, Shanghai, in 2016. Her research interests are theory and techniques of white-box cryptography, block cipher, software security, and obfuscation. Text
引用本文:   
Ting-Ting Lin, Xue-Jia Lai, Wei-Jia Xue, Yin Jia.基于Feistel类型的白盒加密方案[J]  Journal of Computer Science and Technology , 2017,V32(2): 386-395
Ting-Ting Lin, Xue-Jia Lai, Wei-Jia Xue, Yin Jia.A New Feistel-Type White-Box Encryption Scheme[J]  Journal of Computer Science and Technology, 2017,V32(2): 386-395
链接本文:  
http://jcst.ict.ac.cn:8080/jcst/CN/10.1007/s11390-017-1727-x
Copyright 2010 by Journal of Computer Science and Technology