Differential Attacks on Lightweight Block Ciphers PRESENT, PRIDE, and RECTANGLE Revisited

TEZCAN C., OKAN G. O. , Senol A., Dogan E., Yucebas F., BAYKAL N.

5th International Workshop on Lightweight Cryptography for Security and Privacy (LightSec), Cappadocia, Turkey, 20 - 21 September 2016, vol.10098, pp.18-32 identifier identifier

  • Publication Type: Conference Paper / Full Text
  • Volume: 10098
  • Doi Number: 10.1007/978-3-319-55714-4_2
  • City: Cappadocia
  • Country: Turkey
  • Page Numbers: pp.18-32
  • Keywords: Block cipher, Lightweight, Differential attack, Differential factor, Undisturbed bit, CRYPTANALYSIS
  • Middle East Technical University Affiliated: Yes


Differential distribution and linear approximation tables are the main security criteria for S-box designers. However, there are other S-box properties that, if overlooked by cryptanalysts, can result in erroneous results in theoretical attacks. In this paper we focus on two such properties, namely undisturbed bits and differential factors. We go on to identify several inconsistencies in published attacks against the lightweight block ciphers PRESENT, PRIDE, and RECTANGLE and present our corrections.