Block ciphers encrypt blocks of plaintext, messages, into blocks of ciphertext under the
action of a secret key, and the process of encryption is reversed by decryption which uses …

An implicit goal of Bitcoin's reward structure is to diffuse network influence over a diverse,
decentralized population of individual participants. Indeed, Bitcoin's security claims rely on …

In this paper we describe a new tool to search for boomerang distinguishers. One limitation
of the MILP model of Liu et al. is that it handles only one round for the middle part while …

This paper fills an important foundational gap with the first proofs, under standard
assumptions and in the standard model, of the existence of PRFs and PRPs resisting rich …

This paper examines the security of AES-192 and AES-256 against a related-key rectangle
attack. We find the following new attacks: 8-round reduced AES-192 with 2 related keys, 10 …

The boomerang uniformity measures the resistance of block ciphers to boomerang attacks
and has become an essential criterion of the substitution box (S-box). However, the S-box es …

In Internet security protocols including TLS 1.3, KEMTLS, MLS and Noise, HMAC is being
assumed to be a dual-PRF, meaning a PRF not only when keyed conventionally (through its …

Skipjack is a block cipher designed by the NSA for use in US government phones, and
commercial mobile and wireless products by AT&T. Among its initial implementations in …

ARX algorithms are a class of symmetric-key algorithms constructed by Addition, Rotation,
and XOR. To evaluate the resistance of an ARX cipher against differential and impossible …

In this paper, we provide a theoretical infrastructure of the reflection attack. In addition, we
mount the reflection attack on some ciphers such as GOST, DEAL and a variant of DES. The …