[6546] in cryptography@c2.net mail archive
Re: Intro to differential & linear cryptanalysis?
daemon@ATHENA.MIT.EDU (Edward Donahue)
Mon Jan 31 23:18:20 2000
Message-ID: <38964691.835919A1@erols.com>
Date: Mon, 31 Jan 2000 21:36:01 -0500
From: Edward Donahue <edonahue@erols.com>
MIME-Version: 1.0
To: Don Davis <dtd@world.std.com>
Cc: cryptography@c2.net
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Douglas Stinson's book "Cryptography: Theory and Practice" has a short
section on linear cryptanalysis that gives a three and six round worked
example. This discussion seems to me about right for an undergraduate
introduction.
[Unfortunately, its a graduate class, but... -Perry]
Don Davis wrote:
> perry metzger wrote:
>
> > I'm teaching a course in crypto this semester, and I'm trying to
> > give my students a thorough background on some deeper topics.
> >
> > Can anyone suggest some papers or other source materials on the
> > area to use in the course?
>
> matsui's crypto '94 paper is pretty straightforward
> for linear cryptanalysis, as is the biham/shamir book
> on differential cryptanalysis (springer). there are
> earlier papers for both, i think, but these presentations
> give good summaries of the ways the attacks work. the
> biham book, of course, continues into a lot of detail,
> but being < 1 cm thick, it's still tractable.
>
> - don davis, boston
>
> -
