Affine transformation subbytes box-based lightweight hash method

Abstract

The invention relates to an affine transformation subbytes box-based lightweight hash method. The method comprises the following steps of a message initializing stage, a message absorption stage, and an abstract output stage. The method has the advantages that first, the method uses a sponge structure externally, has a computable security boundary, provides three versions of parameter combination so as to meet application demands of different environments, and can provide from anti-collision of 40 bit to first preimage security of 128 bit; second, the affine transformation S box with an internal replacement structure is added with linearity layer confusion, so that the defect that the linearity layer of a similar PRESENT structure is too simple is overcome, the anti-statistical saturation attack ability of the internal replacement structure is enhanced, therefore, the overall security of the lightweight hash method is improved; and third, a non-linearity layer of the internal replacement structure adopts an S box of three bit with good differential characteristic, and the S box of three bit is lower in hardware overhead compared with an S box of four bit of a same type of lightweight hash function family.

Description

technical field [0001] The present invention relates to an integrity verification algorithm aimed at the safety of an embedded system, in particular to a lightweight hashing method based on an affine transformation of a subbytes box (Subbytes Box, hereinafter referred to as an S box). It belongs to the field of cryptographic hash functions. Background technique [0002] With the development of information technology, computer technology and microelectronics technology, the application requirements of embedded systems are increasing day by day, especially in the fields of communication, network, industrial control, automation, transportation, medical treatment and consumer electronics. Its application areas mainly include: industrial control, traffic management, information appliances, home intelligent management system, POS network and e-commerce, environmental engineering and nature, real-time monitoring of hydrological data, earthquake monitoring network, real-time weather...

AI Technical Summary

Problems solved by technology

[0009] The purpose of the present invention is to solve the problem that the structure of the linear diffusion layer is single in the lightweight hash function with block cipher, especially the PRESENT-like structure as the internal replacement structure, and is vulnerable to the attack of the statistical saturation method. A lightweight hashing method for section replacement boxes. This method increases the confusion of the linear layer through the affine transformation of the S-box. To a certain extent, it makes up for the lack of a linear layer with a PRESENT-like structure that is too simple, and has better anti-statistic Saturation attack capability with low hardware overhead

Images