Shorter linear straight-line programs for MDS matrices
Recently a lot of attention is paid to the search for efficiently implementable MDS matrices for
lightweight symmetric primitives. Most previous work concentrated on locally optimizing the …
lightweight symmetric primitives. Most previous work concentrated on locally optimizing the …
Thinking outside the superbox
Designing a block cipher or cryptographic permutation can be approached in many different
ways. One such approach, popularized by AES, consists in grouping the bits along the S …
ways. One such approach, popularized by AES, consists in grouping the bits along the S …
Constructing low-latency involutory MDS matrices with lightweight circuits
MDS matrices are important building blocks providing diffusion functionality for the design of
many symmetric-key primitives. In recent years, continuous efforts are made on the …
many symmetric-key primitives. In recent years, continuous efforts are made on the …
Infinite families of 3-designs and 2-designs from almost MDS codes
G Xu, X Cao, L Qu - IEEE Transactions on Information Theory, 2022 - ieeexplore.ieee.org
Combinatorial designs are closely related to linear codes. Recently, some near MDS codes
were employed to construct-designs by Ding and Tang, which settles the question as to …
were employed to construct-designs by Ding and Tang, which settles the question as to …
Near MDS codes from oval polynomials
Q Wang, Z Heng - Discrete Mathematics, 2021 - Elsevier
A linear code with parameters of the form [n, k, n− k+ 1] is referred to as an MDS (maximum
distance separable) code. A linear code with parameters of the form [n, k, n− k] is said to be …
distance separable) code. A linear code with parameters of the form [n, k, n− k] is said to be …
On the direct construction of MDS and near-MDS matrices
The optimal branch number of MDS matrices makes them a preferred choice for designing
diffusion layers in many block ciphers and hash functions. Consequently, various methods …
diffusion layers in many block ciphers and hash functions. Consequently, various methods …
A framework to optimize implementations of matrices
In this paper, we propose several reduction rules to optimize the given implementation of a
binary matrix over F 2. Moreover, we design a top-layer framework which can make use of …
binary matrix over F 2. Moreover, we design a top-layer framework which can make use of …
On the lower bound of cost of MDS matrices
A Venkateswarlu, A Kesarwani, S Sarkar - IACR Transactions on …, 2022 - tosc.iacr.org
Ever since lightweight cryptography emerged as one of the trending topics in symmetric key
cryptography, optimizing the implementation cost of MDS matrices has been in the center of …
cryptography, optimizing the implementation cost of MDS matrices has been in the center of …
On the construction of new lightweight involutory MDS matrices in generalized subfield form
MK Pehlivanoğlu, FB Sakallı, S Akleylek… - IEEE Access, 2023 - ieeexplore.ieee.org
Maximum Distance Separable (MDS) matrices are used as the main component of diffusion
layers in block ciphers. MDS matrices have the optimal diffusion properties and the …
layers in block ciphers. MDS matrices have the optimal diffusion properties and the …
Generalized feistel ciphers for efficient prime field masking-full version
A recent work from Eurocrypt 2023 suggests that prime-field masking has excellent potential
to improve the efficiency vs. security tradeoff of masked implementations against side …
to improve the efficiency vs. security tradeoff of masked implementations against side …