Significantly Improved Cryptanalysis of Salsa20 with Two-Round Criteria
Abstract: Over the past decade and a half, cryptanalytic techniques for Salsa20 have been increasingly refined, largely following the overarching concept of Probabilistically Neutral Bits (PNBs) by Aumasson et al. (FSE 2008). In this paper, we present a novel criterion for choosing key-IV pairs using certain 2-round criteria and connect that with clever tweaks of existing techniques related to Probabilistically Independent IV bits (earlier used for ARX ciphers, but not for Salsa20) and well-studied PNBs. Through a detailed examination of the matrix after initial rounds of Salsa20, we introduce the first-ever cryptanalysis of Salsa20 exceeding 8 rounds. Specifically, Salsa20/8.5, consisting of 256 secret key bits, can be cryptanalyzed with a time complexity of 2245.84 and data amounting to 299.47. Further, the sharpness of our attack can be highlighted by showing that Salsa20/8 can be broken with time 2186.01 and data 299.73, which is a significant improvement over the best-known result of Co.... https://tosc.iacr.org/index.php/ToSC/article/view/12083
- Standort
-
Deutsche Nationalbibliothek Frankfurt am Main
- Umfang
-
Online-Ressource
- Sprache
-
Englisch
- Erschienen in
-
Significantly Improved Cryptanalysis of Salsa20 with Two-Round Criteria ; volume:2025 ; number:1 ; year:2025
IACR transactions on symmetric cryptology ; 2025, Heft 1 (2025)
- Urheber
-
Dey, Sabyasachi
Maitra, Subhamoy
Sarkar, Santanu
Sharma, Nitin Kumar
- DOI
-
10.46586/tosc.v2025.i1.420-443
- URN
-
urn:nbn:de:101:1-2503121755113.914499719746
- Rechteinformation
-
Open Access; Der Zugriff auf das Objekt ist unbeschränkt möglich.
- Letzte Aktualisierung
-
15.08.2025, 07:21 MESZ
Datenpartner
Deutsche Nationalbibliothek. Bei Fragen zum Objekt wenden Sie sich bitte an den Datenpartner.
Beteiligte
- Dey, Sabyasachi
- Maitra, Subhamoy
- Sarkar, Santanu
- Sharma, Nitin Kumar
Ähnliche Objekte (12)
Improved MITM cryptanalysis on Streebog
Cryptanalysis of Full-Round BipBip
Improved cryptanalysis of the DECT standard cipher
Cryptanalysis of reduced round SKINNY block cipher
Rotational-XOR cryptanalysis of reduced-round SPECK
Integral cryptanalysis on reduce-round SAILFISH-I
Differential-Linear Cryptanalysis of Reduced Round ChaCha
Significantly Improved Multi-bit Differentials for Reduced Round Salsa and ChaCha
Cryptanalysis of reduced round ChaCha – new attack & deeper analysis
Cube-attack-like cryptanalysis of round-reduced Keccak using MILP
Improved Parameter Estimates for Correlation and Capacity Deviates in Linear Cryptanalysis
Cryptanalysis of QARMAv2
Improved MITM cryptanalysis on Streebog
Cryptanalysis of Full-Round BipBip
Improved cryptanalysis of the DECT standard cipher
Cryptanalysis of reduced round SKINNY block cipher
Rotational-XOR cryptanalysis of reduced-round SPECK
Integral cryptanalysis on reduce-round SAILFISH-I
Differential-Linear Cryptanalysis of Reduced Round ChaCha
Significantly Improved Multi-bit Differentials for Reduced Round Salsa and ChaCha
Cryptanalysis of reduced round ChaCha – new attack & deeper analysis
Cube-attack-like cryptanalysis of round-reduced Keccak using MILP
Improved Parameter Estimates for Correlation and Capacity Deviates in Linear Cryptanalysis
Cryptanalysis of QARMAv2
Improved MITM cryptanalysis on Streebog
Cryptanalysis of Full-Round BipBip
Improved cryptanalysis of the DECT standard cipher
Cryptanalysis of reduced round SKINNY block cipher
Rotational-XOR cryptanalysis of reduced-round SPECK
Integral cryptanalysis on reduce-round SAILFISH-I
Differential-Linear Cryptanalysis of Reduced Round ChaCha
Significantly Improved Multi-bit Differentials for Reduced Round Salsa and ChaCha
Cryptanalysis of reduced round ChaCha – new attack & deeper analysis
Cube-attack-like cryptanalysis of round-reduced Keccak using MILP
Improved Parameter Estimates for Correlation and Capacity Deviates in Linear Cryptanalysis