Differential entropy analysis of the IDEA block cipher

Alex Biryukov, Jorge Nakahara, Hamdi Murat Yıldırım
2014 Journal of Computational and Applied Mathematics  
This paper describes a new cryptanalytic technique that combines differential cryptanalysis with Shannon entropy. We call it differential entropy (DE). The objective is to exploit the non-uniform distribution of output differences from a given mapping as a distinguishing tool in cryptanalysis. Our preferred target is the IDEA block cipher, since we detected significantly low entropy at the output of its multiplication operation. We looked to further extend this entropy analysis to larger
more » ... nts and for a number of rounds. We present key-recovery attacks on up to 2.5-round IDEA in the single-key model and without weakkey assumptions.
doi:10.1016/j.cam.2013.08.002 fatcat:uajvnbbrzzc2nled65zejd2cta