Cryptanalysis of a white-box SM4 implementation based on collision attack

Rusi Wang; Hua Guo; Jiqiang Lu; Jianwei Liu

doi:10.1049/ise2.12045

Cryptanalysis of a white-box SM4 implementation based on collision attack

Rusi Wang
, Hua Guo^*
, Jiqiang Lu
, Jianwei Liu

^*Corresponding author for this work

School of Cyber Science and Technology

Research output: Contribution to journal › Article › peer-review

13 Scopus citations

Abstract

White-box cryptography is to primarily protect the key of a cipher from being extracted in a white-box scenario, where an adversary has full access to the execution environment of software implementation. Since the introduction of white-box cryptography, a number of white-box implementations of the Chinese SM4 block cipher standard have been proposed, and all of them have been attacked based on Billet et al.’s attack. In this study, we show that collision-based attack can work more efficiently on Shi et al.’s white-box SM4 implementation than the previously published attacks, by devising an attack with a time complexity of (Formula presented.), significantly reducing the previously known time complexity of (Formula presented.) to a very practical level. Our attack can also be similarly applied to some other white-box SM4 implementations.

Original language	English
Pages (from-to)	18-27
Number of pages	10
Journal	IET Information Security
Volume	16
Issue number	1
DOIs	https://doi.org/10.1049/ise2.12045
State	Published - Jan 2022

Keywords

SM4
collision attack
cryptography
digital rights management
white-box cryptography

Access to Document

10.1049/ise2.12045

Cite this

@article{9bf208d8006842ddb50139f8136b3d70,

title = "Cryptanalysis of a white-box SM4 implementation based on collision attack",

abstract = "White-box cryptography is to primarily protect the key of a cipher from being extracted in a white-box scenario, where an adversary has full access to the execution environment of software implementation. Since the introduction of white-box cryptography, a number of white-box implementations of the Chinese SM4 block cipher standard have been proposed, and all of them have been attacked based on Billet et al.{\textquoteright}s attack. In this study, we show that collision-based attack can work more efficiently on Shi et al.{\textquoteright}s white-box SM4 implementation than the previously published attacks, by devising an attack with a time complexity of (Formula presented.), significantly reducing the previously known time complexity of (Formula presented.) to a very practical level. Our attack can also be similarly applied to some other white-box SM4 implementations.",

keywords = "SM4, collision attack, cryptography, digital rights management, white-box cryptography",

author = "Rusi Wang and Hua Guo and Jiqiang Lu and Jianwei Liu",

note = "Publisher Copyright: {\textcopyright} 2021 The Authors. IET Information Security published by John Wiley \& Sons Ltd on behalf of The Institution of Engineering and Technology.",

year = "2022",

month = jan,

doi = "10.1049/ise2.12045",

language = "英语",

volume = "16",

pages = "18--27",

journal = "IET Information Security",

issn = "1751-8709",

publisher = "John Wiley and Sons Ltd",

number = "1",

}

TY - JOUR

T1 - Cryptanalysis of a white-box SM4 implementation based on collision attack

AU - Wang, Rusi

AU - Guo, Hua

AU - Lu, Jiqiang

AU - Liu, Jianwei

PY - 2022/1

Y1 - 2022/1

N2 - White-box cryptography is to primarily protect the key of a cipher from being extracted in a white-box scenario, where an adversary has full access to the execution environment of software implementation. Since the introduction of white-box cryptography, a number of white-box implementations of the Chinese SM4 block cipher standard have been proposed, and all of them have been attacked based on Billet et al.’s attack. In this study, we show that collision-based attack can work more efficiently on Shi et al.’s white-box SM4 implementation than the previously published attacks, by devising an attack with a time complexity of (Formula presented.), significantly reducing the previously known time complexity of (Formula presented.) to a very practical level. Our attack can also be similarly applied to some other white-box SM4 implementations.

AB - White-box cryptography is to primarily protect the key of a cipher from being extracted in a white-box scenario, where an adversary has full access to the execution environment of software implementation. Since the introduction of white-box cryptography, a number of white-box implementations of the Chinese SM4 block cipher standard have been proposed, and all of them have been attacked based on Billet et al.’s attack. In this study, we show that collision-based attack can work more efficiently on Shi et al.’s white-box SM4 implementation than the previously published attacks, by devising an attack with a time complexity of (Formula presented.), significantly reducing the previously known time complexity of (Formula presented.) to a very practical level. Our attack can also be similarly applied to some other white-box SM4 implementations.

KW - SM4

KW - collision attack

KW - cryptography

KW - digital rights management

KW - white-box cryptography

UR - https://www.scopus.com/pages/publications/85115163014

U2 - 10.1049/ise2.12045

DO - 10.1049/ise2.12045

M3 - 文章

AN - SCOPUS:85115163014

SN - 1751-8709

VL - 16

SP - 18

EP - 27

JO - IET Information Security

JF - IET Information Security

IS - 1

ER -

Cryptanalysis of a white-box SM4 implementation based on collision attack

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this