New Distinguishing Attacks on Round-Reduced Sparkle384 and Sparkle512 Permutations

Donghoon Chang; Deukjo Hong; Jinkeon Kang

doi:10.1587/transfun.2024EAP1001

New Distinguishing Attacks on Round-Reduced Sparkle384 and Sparkle512 Permutations

Donghoon Chang
, Deukjo Hong^*
, Jinkeon Kang^*

^*Corresponding author for this work

Research output: Contribution to journal › Journal article › peer-review

Abstract

The Sparkle permutation family is used as an underlying building block of the authenticated encryption scheme Schwaemm, and the hash function Esch which are a part of one of finalists in the National Institute of Standards and Technology (NIST) lightweight cryptography standardization process. In this paper, we present distinguishing attacks on 6-round Sparkle384 and 7-round Sparkle512. We used divide-andconquer approach and the fact that Sparkle permutations are keyless, as a different approach from designers' long trail strategy. Our attack on Sparkle384 requires much lower time complexity than existing best one; our attack on Sparkle512 is best in terms of the number of attacked rounds, as far as we know. However, our results do not controvert the security claim of Sparkle designers.

Original language	English
Pages (from-to)	11-19
Number of pages	9
Journal	IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Volume	E108.A
Issue number	1
DOIs	https://doi.org/10.1587/transfun.2024EAP1001
State	Published - 2025.01

Keywords

Sparkle384
Sparkle512
distinguishing attack

Quacquarelli Symonds(QS) Subject Topics

Computer Science & Information Systems
Mathematics
Engineering - Electrical & Electronic
Engineering - Petroleum
Data Science

Access to Document

10.1587/transfun.2024EAP1001

Cite this

@article{c0e5f634d7a74bb9a70187fd2bbe72d1,

title = "New Distinguishing Attacks on Round-Reduced Sparkle384 and Sparkle512 Permutations",

abstract = "The Sparkle permutation family is used as an underlying building block of the authenticated encryption scheme Schwaemm, and the hash function Esch which are a part of one of finalists in the National Institute of Standards and Technology (NIST) lightweight cryptography standardization process. In this paper, we present distinguishing attacks on 6-round Sparkle384 and 7-round Sparkle512. We used divide-andconquer approach and the fact that Sparkle permutations are keyless, as a different approach from designers' long trail strategy. Our attack on Sparkle384 requires much lower time complexity than existing best one; our attack on Sparkle512 is best in terms of the number of attacked rounds, as far as we know. However, our results do not controvert the security claim of Sparkle designers.",

keywords = "Sparkle384, Sparkle512, distinguishing attack",

author = "Donghoon Chang and Deukjo Hong and Jinkeon Kang",

note = "Publisher Copyright: {\textcopyright} 2025 The Institute of Electronics, Information and Communication Engineers.",

year = "2025",

month = jan,

doi = "10.1587/transfun.2024EAP1001",

language = "English",

volume = "E108.A",

pages = "11--19",

journal = "IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences",

issn = "0916-8508",

number = "1",

}

TY - JOUR

T1 - New Distinguishing Attacks on Round-Reduced Sparkle384 and Sparkle512 Permutations

AU - Chang, Donghoon

AU - Hong, Deukjo

AU - Kang, Jinkeon

PY - 2025/1

Y1 - 2025/1

N2 - The Sparkle permutation family is used as an underlying building block of the authenticated encryption scheme Schwaemm, and the hash function Esch which are a part of one of finalists in the National Institute of Standards and Technology (NIST) lightweight cryptography standardization process. In this paper, we present distinguishing attacks on 6-round Sparkle384 and 7-round Sparkle512. We used divide-andconquer approach and the fact that Sparkle permutations are keyless, as a different approach from designers' long trail strategy. Our attack on Sparkle384 requires much lower time complexity than existing best one; our attack on Sparkle512 is best in terms of the number of attacked rounds, as far as we know. However, our results do not controvert the security claim of Sparkle designers.

AB - The Sparkle permutation family is used as an underlying building block of the authenticated encryption scheme Schwaemm, and the hash function Esch which are a part of one of finalists in the National Institute of Standards and Technology (NIST) lightweight cryptography standardization process. In this paper, we present distinguishing attacks on 6-round Sparkle384 and 7-round Sparkle512. We used divide-andconquer approach and the fact that Sparkle permutations are keyless, as a different approach from designers' long trail strategy. Our attack on Sparkle384 requires much lower time complexity than existing best one; our attack on Sparkle512 is best in terms of the number of attacked rounds, as far as we know. However, our results do not controvert the security claim of Sparkle designers.

KW - Sparkle384

KW - Sparkle512

KW - distinguishing attack

UR - https://www.scopus.com/pages/publications/85213814250

U2 - 10.1587/transfun.2024EAP1001

DO - 10.1587/transfun.2024EAP1001

M3 - Journal article

AN - SCOPUS:85213814250

SN - 0916-8508

VL - E108.A

SP - 11

EP - 19

JO - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

JF - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

IS - 1

ER -

New Distinguishing Attacks on Round-Reduced Sparkle384 and Sparkle512 Permutations

Abstract

Keywords

Quacquarelli Symonds(QS) Subject Topics

Access to Document

Other files and links

Fingerprint

Cite this