加算の線形特性を計算する効率の良いアルゴリズム

Presentation	2002/5/15 Efficient Algorithms for Computing Linear Properties of Addition Shiho MORIAI, Hideki IMAI,
PDF Download Page	PDF download Page Link
Abstract(in Japanese)	(See Japanese page)
Abstract(in English)	This paper deals with efficient algorithms for computing linear properties of addition modulo 2^n. Park et al. gave an linear(⊝(n))-time algorithm for computing linear probability for given input and output masking values. This paper presents a new efficient algorithm for linear properties of addition: a linear-time algorithm which computes the maximum linear probability for given input masking values. The previously known algorithm required exhaustive (exponential-time) computation. The algorithm facilitates linear cryptanalysis of many block ciphers and other cryptographic primitives that use addition modulo 2^n.
Keyword(in Japanese)	(See Japanese page)
Keyword(in English)	addition / linear probability / linear cryptanalysis / differential probability / differential cryptanalysis
Paper #	ISEC2002-1
Date of Issue

Paper Information
Registration To	Information Security (ISEC)
Language	JPN
Title (in Japanese)	(See Japanese page)
Sub Title (in Japanese)	(See Japanese page)
Title (in English)	Efficient Algorithms for Computing Linear Properties of Addition
Sub Title (in English)
Keyword(1)	addition
Keyword(2)	linear probability
Keyword(3)	linear cryptanalysis
Keyword(4)	differential probability
Keyword(5)	differential cryptanalysis
1st Author's Name	Shiho MORIAI
1st Author's Affiliation	NTT Information Sharing Platform Laboratories, Nippon Telegraph and Telephone Corporation()
2nd Author's Name	Hideki IMAI
2nd Author's Affiliation	Institute of Industrial Science, Tokyo University
Date	2002/5/15
Paper #	ISEC2002-1
Volume (vol)	vol.102
Number (no)	71
Page	pp.pp.-
#Pages	4
Date of Issue