mersenneforum.org

mersenneforum.org (https://www.mersenneforum.org/index.php)
-   Math (https://www.mersenneforum.org/forumdisplay.php?f=8)
-   -   A question about the S-box of Rijndael!!! (https://www.mersenneforum.org/showthread.php?t=9625)

dorothy 2007-11-22 04:51
A question about the S-box of Rijndael!!!
 
This is my first time here!Nice to meet u all!:devil:

These days I read the disquisition “A Toolbox for Cryptanalysis: Linear and Affine Equivalence Algorithms", and find it quite useful for me. I decide to focus on the part 5.1-Rijndael, and I want to analyze the equivalent classes of the S-box in Rijndael. But there are some questions.
If the 2 S-boxes are equivalent,they will satisfy $A_2*S*A_1=S$.where $A_1,A_2$ are the affine transform.Special for Rijndael,we can express the universal equation above like this:$B(Ax+a)^-1+b=Px^-1+p.The reason is that the S transform in Rijndael is the affine transform of the inverse of element of the field.
When we fix the field polynomial, we can get 2040 different solutions, which confirms the output of the AE algorithm. In the AE algorithm, we let $A_1(x)=Ax+a; A_2=By+b$, that satisfy $A_2*S*A_1=S$. But you give another expression for all pairs of affine mappings $A_1,A_2$, that
$A_1(x)=[a]Q^ix$
$A_2(x)=A(Q^{-i}[a]A^{-1}(x))$, with $0\leqi<8$ and $a\inGF(2^8)\{0}$.
Obviously this expression of $A_1$ is more simple($A_1(x)=[a]Q^ix$) than it should be($A_1(x)=Ax+a$), but why it can be predigested like this? :question:If anyone can give me a piece of proof about this, it will be quite useful for my graduation.

jasonp 2007-11-22 15:10
[QUOTE=dorothy;118952]This is my first time here!Nice to meet u all!:devil:

These days I read the disquisition “A Toolbox for Cryptanalysis: Linear and Affine Equivalence Algorithms", and find it quite useful for me. I decide to focus on the part 5.1-Rijndael, and I want to analyze the equivalent classes of the S-box in Rijndael. But there are some questions.
[/QUOTE]
You should take your questions to the usenet newsgroup sci.crypt, nobody really studies crypto here.

maxal 2007-11-22 23:32
A lot of info in algebraic attacks on AES is presented at: [url]http://www.cryptosystem.net/aes/[/url]

nibble4bits 2007-11-26 04:04
Well I do, but yes, you should go to a news server and post your question there. They have a lot of combined experience with encryption, compared to us.

dorothy 2007-12-02 08:02
Thank all of you!


All times are UTC. The time now is 22:11.

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.