Cryptanalysis Taskforce

Security Evaluation of AES

Summary:

It was proven that there exists no 5-round impossible differential path of AES without taking the details of Sbox into account [SLG+16a], and the first 5 round integrals of AES was discovered in [SLG+16a].

The first preimage attack against 8-round AES hashing modes was found in [BDG+21], and [BGLP21] quantum distinguishers against 8-round AES-128, and full rounds of AES-192 and AES-256.

References:

[SLG+16a] Bing Sun, Meicheng Liu, Jian Guo, Vincent Rijmen, Ruilin Li: Provable Security Evaluation of Structures Against Impossible Differential and Zero Correlation Linear Cryptanalysis. EUROCRYPT (1) 2016: 196-213

[SLG+16b] Bing Sun, Meicheng Liu, Jian Guo, Longjiang Qu, Vincent Rijmen: New Insights on AES-Like SPN Ciphers. CRYPTO (1) 2016: 605-624

[DIS+18] Patrick Derbez, Tetsu Iwata, Ling Sun, Siwei Sun, Yosuke Todo, Haoyang Wang, Meiqin Wang: Cryptanalysis of AES-PRF and Its Dual. IACR Trans. Symmetric Cryptol. 2018(2): 161-191 (2018)

[SQH19] Ling Song, Xianrui Qin, Lei Hu: Boomerang Connectivity Table Revisited. Application to SKINNY and AES. IACR Trans. Symmetric Cryptol. 2019(1): 118-141 (2019)

[BDG+19] Zhenzhen Bao, Lin Ding, Jian Guo, Haoyang Wang, Wenying Zhang: Improved Meet-in-the-Middle Preimage Attacks against AES Hashing Modes. IACR Trans. Symmetric Cryptol. 2019(4): 318-347 (2019)

[BGL20] Zhenzhen Bao, Jian Guo, Eik List: Extended Truncated-differential Distinguishers on Round-reduced AES. IACR Trans. Symmetric Cryptol. 2020(3): 197-261 (2020)

[BDG+21] Zhenzhen Bao, Xiaoyang Dong, Jian Guo, Zheng Li, Danping Shi, Siwei Sun, Xiaoyun Wang: Automatic Search of Meet-in-the-Middle Preimage Attacks on AES-like Hashing. EUROCRYPT 2021

[BGLP21] Zhenzhen Bao, Jian Guo, Shun Li, Phuong Pham: Quantum Multi-Collision Distinguishers, https://eprint.iacr.org/2021/703