[6542] in cryptography@c2.net mail archive
Re: Intro to differential & linear cryptanalysis?
daemon@ATHENA.MIT.EDU (Don Davis)
Mon Jan 31 18:33:27 2000
Message-Id: <l03110700b4bbbd799f90@[208.192.102.92]>
In-Reply-To: <87oga2m6d3.fsf@snark.piermont.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Mon, 31 Jan 2000 17:49:40 -0500
To: "Perry E. Metzger" <perry@piermont.com>
From: Don Davis <dtd@world.std.com>
Cc: cryptography@c2.net
perry metzger wrote:
> I'm teaching a course in crypto this semester, and I'm trying to
> give my students a thorough background on some deeper topics.
>
> Can anyone suggest some papers or other source materials on the
> area to use in the course?
matsui's crypto '94 paper is pretty straightforward
for linear cryptanalysis, as is the biham/shamir book
on differential cryptanalysis (springer). there are
earlier papers for both, i think, but these presentations
give good summaries of the ways the attacks work. the
biham book, of course, continues into a lot of detail,
but being < 1 cm thick, it's still tractable.
- don davis, boston
-
