S. V. Agievich, A. S. Maslov, Yu. S. Yarashenya, “On probabilities of differential trails in the Bash-f sponge function”, Prikl. Diskr. Mat. Suppl., 2019, Issue 12,Pages <nobr>86

Mathematical Methods of Cryptography

On probabilities of differential trails in the Bash-f sponge function

S. V. Agievich, A. S. Maslov, Yu. S. Yarashenya

Research Institute for Applied Problems of Mathematics and Informatics, Belarusian State University, Minsk

Abstract: We propose two methods to obtain lower bounds on the weights of differential trails in the Bash-f sponge function. Our bounds restrict the probabilities of the trails from above and can be used to justify the security of cryptographic algorithms based on Bash-f against differential attacks. For the full $24$-round trails, our best bound on the probabilities is $2^{-386}$.

Keywords: sponge function, S-box, differential cryptanalysis, differential trail.

UDC: 519.7

DOI: 10.17223/2226308X/12/27