{"id":86,"date":"2020-11-10T18:16:30","date_gmt":"2020-11-10T17:16:30","guid":{"rendered":"https:\/\/project.inria.fr\/saturnin\/?page_id=86"},"modified":"2020-11-10T18:16:30","modified_gmt":"2020-11-10T17:16:30","slug":"challenge","status":"publish","type":"page","link":"https:\/\/project.inria.fr\/saturnin\/challenge\/","title":{"rendered":"Challenge"},"content":{"rendered":"

<\/p>\n

If Saturnin makes <\/span>it<\/span> to the third <\/span>round of the NIST lightweight cryptography process<\/span>, we would like to add to our submission <\/span>a QCB version of Saturnin: Saturnin-QCB, combining this newly proposed mode<\/a>\u00a0 [pdf]<\/a> with the 16<\/span> Super-<\/span>round version of Saturnin.<\/span><\/div>\n
As this version uses a tweak added to the key, related-key security\u00a0<\/span>seems particularly relevant in this scenario.<\/span><\/div>\n
\n
<\/div>\n<\/div>\n
To<\/span> encourage third-party <\/span>related-key <\/span>cryptanalysis<\/span> on round-reduced versions of <\/span>the Saturnin instances used in this new proposal, we launch the following challenges, detailed below.<\/span><\/div>\n
<\/div>\n
The teams proposing the first results in each category will be the winners of a batch of typical <\/span>F<\/span>rench and duck-related pri<\/span>z<\/span>es,\u00a0<\/span>that will depend on the challenge solved. These pri<\/span>z<\/span>es will be awarded at the end of March 2021.\u00a0<\/span> Please send us your results if you want to take part in the challenge to the following address:<\/span><\/div>\n
maria.naya_plasencia \\at\\ inria.fr.<\/div>\n
<\/div>\n
Both classical and quantum attacks are accepted.<\/span><\/div>\n
<\/div>\n
<\/div>\n

Category 1:\u00a0 <\/span>related-key attacks on reduced-round Saturnin<\/span><\/h4>\n
Our best attack, that can be found in the following note<\/a>, reaches up to 10 rounds cla<\/span>s<\/span>sically.<\/span><\/div>\n
<\/div>\n\n\n\n\n\n
Rounds<\/th>\n10<\/td>\n11<\/td>\n12<\/td>\n13<\/td>\n14<\/td>\n15<\/td>\n16<\/td>\n<\/tr>\n
Authors<\/th>\nSaturnin team<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n
Complexity<\/th>\n2236<\/sup> (classical)<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n
<\/div>\n
<\/div>\n
<\/div>\n
<\/div>\n

Category <\/span>2<\/span>: Saturnin-QCB<\/span><\/h4>\n
\n
P<\/span>rize<\/span>s<\/span> will<\/span> also<\/span> be<\/span> awarded to the best cryptanalysis result<\/span>s<\/span> (number of rounds, practicality) against Saturnin-QCB. For these attacks, the IV can be either adversary-controlled<\/span>,<\/span> or random<\/span> (<\/span>the latter being the most difficult, and thus the most interesting<\/span>)<\/span>.<\/span><\/div>\n<\/div>\n
<\/div>\n
\n\n\n\n\n\n
Rounds<\/th>\n9<\/td>\n10<\/td>\n11<\/td>\n12<\/td>\n13<\/td>\n14<\/td>\n15<\/td>\n16<\/td>\n<\/tr>\n
Authors<\/th>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n
Complexity<\/th>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n
<\/div>\n<\/div>\n
<\/div>\n
<\/div>\n
<\/div>\n
<\/div>\n

<\/p>","protected":false},"excerpt":{"rendered":"

If Saturnin makes it to the third round of the NIST lightweight cryptography process, we would like to add to our submission a QCB version of Saturnin: Saturnin-QCB, combining this newly proposed mode\u00a0 [pdf] with the 16 Super-round version of Saturnin. As this version uses a tweak added to the\u2026<\/p>\n

Continue reading<\/span><\/i><\/a> <\/p>\n","protected":false},"author":1367,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-86","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/pages\/86","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/users\/1367"}],"replies":[{"embeddable":true,"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/comments?post=86"}],"version-history":[{"count":27,"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/pages\/86\/revisions"}],"predecessor-version":[{"id":136,"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/pages\/86\/revisions\/136"}],"wp:attachment":[{"href":"https:\/\/project.inria.fr\/saturnin\/wp-json\/wp\/v2\/media?parent=86"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}