Logo: to the web site of the Swedish Defence University

fhs.se
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard-cite-them-right
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Breaking HALFLOOP-24
Swedish Defence University, Department of Systems Science for Defence and Security, Systems Science for Defence and Security Division. University of Skövde, (SWE).ORCID iD: 0000-0001-9246-0263
Univ Rennes, Centre National de la Recherche Scientifique (CNRS), Institut de Recherche en Informatique et Systèmes Aléatoires (IRISA), (FRA).
Ruhr University Bochum, (DEU).
Ruhr University Bochum, (DEU).
2022 (English)In: IACR Transactions on Symmetric Cryptology, ISSN 2519-173X, Vol. 2022, no 3, p. 217-238Article in journal (Refereed) Published
Abstract [en]

HALFLOOP-24 is a tweakable block cipher that is used to protect automatic link establishment messages in high frequency radio, a technology commonly used by government agencies and industries that need highly robust long-distance communications. We present the first public cryptanalysis of HALFLOOP-24 and show that HALFLOOP-24, despite its key size of 128 bits, is far from providing 128 bit security. More precisely, we give attacks for ciphertext-only, known-plaintext, chosen-plaintext and chosen-ciphertext scenarios. In terms of their complexities, most of them can be considered practical. However, in the real world, the amount of available data is too low for our attacks to work. Our strongest attack, a boomerang key-recovery, finds the first round key with less than 210 encryption and decryption queries. In conclusion, we strongly advise against using HALFLOOP-24.

Place, publisher, year, edition, pages
2022. Vol. 2022, no 3, p. 217-238
Keywords [en]
HF Radio, ALE, HALFLOOP, Boomerang
National Category
Other Mathematics
Research subject
Systems science for defence and security
Identifiers
URN: urn:nbn:se:fhs:diva-11065DOI: 10.46586/tosc.v2022.i3.217-238OAI: oai:DiVA.org:fhs-11065DiVA, id: diva2:1695170
Conference
Fast Software Encryption (FSE) 2023, Beijing, China, March 20-24, 2023
Available from: 2022-09-13 Created: 2022-09-13 Last updated: 2022-09-26Bibliographically approved

Open Access in DiVA

fulltext(628 kB)139 downloads
File information
File name FULLTEXT01.pdfFile size 628 kBChecksum SHA-512
e0e88ed83ed89831be9d7330b77efbf24b6f5185f457a9849313a518b2b8f4e12e1cff3e7c8a8e5babf99da9ff4c300183f1f008ac916a81a8e6e09010e50616
Type fulltextMimetype application/pdf

Other links

Publisher's full text

Authority records

Dansarie, Marcus

Search in DiVA

By author/editor
Dansarie, Marcus
By organisation
Systems Science for Defence and Security Division
Other Mathematics

Search outside of DiVA

GoogleGoogle Scholar
Total: 139 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 933 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard-cite-them-right
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf