{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,7]],"date-time":"2026-03-07T14:18:40Z","timestamp":1772893120009,"version":"3.50.1"},"publisher-location":"Cham","reference-count":78,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030457235","type":"print"},{"value":"9783030457242","type":"electronic"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-45724-2_22","type":"book-chapter","created":{"date-parts":[[2020,5,1]],"date-time":"2020-05-01T04:17:18Z","timestamp":1588306638000},"page":"641-673","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":13,"title":["TNT: How to Tweak a Block Cipher"],"prefix":"10.1007","author":[{"given":"Zhenzhen","family":"Bao","sequence":"first","affiliation":[]},{"given":"Chun","family":"Guo","sequence":"additional","affiliation":[]},{"given":"Jian","family":"Guo","sequence":"additional","affiliation":[]},{"given":"Ling","family":"Song","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2020,5,1]]},"reference":[{"key":"22_CR1","unstructured":"CAESAR: Competition for Authenticated Encryption: Security, Applicability, and Robustness (2014\u20132019). https:\/\/competitions.cr.yp.to\/caesar.html"},{"key":"22_CR2","unstructured":"Aumasson, J.P., et al.: Challenges in authenticated encryption, March 2017. https:\/\/chae.cr.yp.to\/chae-20170301.pdf"},{"issue":"2","key":"22_CR3","doi-asserted-by":"crossref","first-page":"1","DOI":"10.46586\/tosc.v2019.i2.1-54","volume":"2019","author":"Z Bao","year":"2019","unstructured":"Bao, Z., Guo, J., Iwata, T., Minematsu, K.: ZOCB and ZOTR: tweakable blockcipher modes for authenticated encryption with full absorption. IACR Trans. Symmetr. Cryptol. 2019(2), 1\u201354 (2019)","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"22_CR4","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"185","DOI":"10.1007\/978-3-319-96881-0_7","volume-title":"Advances in Cryptology \u2013 CRYPTO 2018","author":"A Bar-On","year":"2018","unstructured":"Bar-On, A., Dunkelman, O., Keller, N., Ronen, E., Shamir, A.: Improved key recovery attacks on reduced-round AES with practical data and memory complexities. In: Shacham, H., Boldyreva, A. (eds.) CRYPTO 2018, Part II. LNCS, vol. 10992, pp. 185\u2013212. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-96881-0_7"},{"key":"22_CR5","unstructured":"Bardeh, N.G.: A key-independent distinguisher for 6-round AES in an adaptive setting. Cryptology ePrint Archive, Report 2019\/945 (2019). https:\/\/eprint.iacr.org\/2019\/945"},{"key":"22_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"347","DOI":"10.1007\/978-3-030-34618-8_12","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2019","author":"NG Bardeh","year":"2019","unstructured":"Bardeh, N.G., R\u00f8njom, S.: The exchange attack: how to\u00a0distinguish six rounds of AES with $$2^{88.2}$$ chosen plaintexts. In: Galbraith, S.D., Moriai, S. (eds.) ASIACRYPT 2019. LNCS, vol. 11923, pp. 347\u2013370. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-34618-8_12"},{"key":"22_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"123","DOI":"10.1007\/978-3-662-53008-5_5","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"C Beierle","year":"2016","unstructured":"Beierle, C., et al.: The SKINNY family of block ciphers and its low-latency variant MANTIS. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016, Part II. LNCS, vol. 9815, pp. 123\u2013153. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53008-5_5"},{"key":"22_CR8","doi-asserted-by":"crossref","unstructured":"Beierle, C., et al.: The SKINNY family of block ciphers and its low-latency variant MANTIS. Cryptology ePrint Archive, Report 2016\/660 (2016). http:\/\/eprint.iacr.org\/2016\/660","DOI":"10.1007\/978-3-662-53008-5_5"},{"key":"22_CR9","doi-asserted-by":"crossref","unstructured":"Bernstein, D.J., Schwabe, P.: New AES software speed records. In: Chowdhury et al. [15], pp. 322\u2013336 (2008)","DOI":"10.1007\/978-3-540-89754-5_25"},{"key":"22_CR10","doi-asserted-by":"crossref","unstructured":"Biryukov, A., Wagner, D.: Slide attacks. In: Knudsen [48], pp. 245\u2013259 (1999)","DOI":"10.1007\/3-540-48519-8_18"},{"key":"22_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"589","DOI":"10.1007\/3-540-45539-6_41","volume-title":"Advances in Cryptology \u2014 EUROCRYPT 2000","author":"A Biryukov","year":"2000","unstructured":"Biryukov, A., Wagner, D.: Advanced slide attacks. In: Preneel, B. (ed.) EUROCRYPT 2000. LNCS, vol. 1807, pp. 589\u2013606. Springer, Heidelberg (2000). https:\/\/doi.org\/10.1007\/3-540-45539-6_41"},{"key":"22_CR12","unstructured":"Chakraborti, A., Datta, N., Jha, A., Lopez, C.M., Nandi, M., Sasaki, Y.: Elastic-tweak: a framework for short tweak tweakable block cipher. Cryptology ePrint Archive, Report 2019\/440 (2019). https:\/\/eprint.iacr.org\/2019\/440"},{"key":"22_CR13","doi-asserted-by":"crossref","unstructured":"Chen, Y.L., Mennink, B., Nandi, M.: Short variable length domain extenders with beyond birthday bound security. In: Peyrin and Galbraith [66], pp. 244\u2013274 (2018)","DOI":"10.1007\/978-3-030-03326-2_9"},{"key":"22_CR14","doi-asserted-by":"publisher","unstructured":"Cheon, J.H., Takagi, T. (eds.): Advances in Cryptology - ASIACRYPT 2016, Part I, Hanoi, Vietnam, 4\u20138 December 2016. LNCS, vol. 10031. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53887-6","DOI":"10.1007\/978-3-662-53887-6"},{"key":"22_CR15","doi-asserted-by":"publisher","unstructured":"Chowdhury, D.R., Rijmen, V., Das, A. (eds.): Progress in Cryptology - INDOCRYPT 2008: 9th International Conference in Cryptology in India, Kharagpur, India 14\u201317 December 2008. LNCS, vol. 5365. Springer, Heidelberg (2008). https:\/\/doi.org\/10.1007\/978-3-540-89754-5","DOI":"10.1007\/978-3-540-89754-5"},{"key":"22_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"683","DOI":"10.1007\/978-3-319-78375-8_22","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2018","author":"C Cid","year":"2018","unstructured":"Cid, C., Huang, T., Peyrin, T., Sasaki, Y., Song, L.: Boomerang connectivity table: a new cryptanalysis tool. In: Nielsen, J.B., Rijmen, V. (eds.) EUROCRYPT 2018, Part II. LNCS, vol. 10821, pp. 683\u2013714. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-78375-8_22"},{"issue":"12","key":"22_CR17","doi-asserted-by":"publisher","first-page":"2747","DOI":"10.1007\/s10623-018-0471-8","volume":"86","author":"B Cogliati","year":"2018","unstructured":"Cogliati, B.: Tweaking a block cipher: multi-user beyond-birthday-bound security in the standard model. Des. Codes Cryptogr. 86(12), 2747\u20132763 (2018). https:\/\/doi.org\/10.1007\/s10623-018-0471-8","journal-title":"Des. Codes Cryptogr."},{"key":"22_CR18","doi-asserted-by":"crossref","unstructured":"Cogliati, B., Lampe, R., Seurin, Y.: Tweaking even-mansour ciphers. In: Gennaro and Robshaw [29], pp. 189\u2013208 (2015)","DOI":"10.1007\/978-3-662-47989-6_9"},{"issue":"2","key":"22_CR19","doi-asserted-by":"publisher","first-page":"27","DOI":"10.46586\/tosc.v2017.i2.27-58","volume":"2017","author":"B Cogliati","year":"2017","unstructured":"Cogliati, B., Lee, J., Seurin, Y.: New constructions of MACs from (tweakable) block ciphers. IACR Trans. Symmetr. Cryptol. 2017(2), 27\u201358 (2017)","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"22_CR20","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"134","DOI":"10.1007\/978-3-662-48800-3_6","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2015","author":"B Cogliati","year":"2015","unstructured":"Cogliati, B., Seurin, Y.: Beyond-birthday-bound security for tweakable even-mansour ciphers with linear tweak and key mixing. In: Iwata, T., Cheon, J.H. (eds.) ASIACRYPT 2015, Part II. LNCS, vol. 9453, pp. 134\u2013158. Springer, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-48800-3_6"},{"key":"22_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"273","DOI":"10.1007\/978-3-642-11799-2_17","volume-title":"Theory of Cryptography","author":"J-S Coron","year":"2010","unstructured":"Coron, J.-S., Dodis, Y., Mandal, A., Seurin, Y.: A domain extender for the ideal cipher. In: Micciancio, D. (ed.) TCC 2010. LNCS, vol. 5978, pp. 273\u2013289. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-11799-2_17"},{"key":"22_CR22","unstructured":"Daemen, J., Rijmen, V.: AES Proposal: Rijndael (1999)"},{"key":"22_CR23","series-title":"Information Security and Cryptography","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-04722-4","volume-title":"The Design of Rijndael: AES - The Advanced Encryption Standard","author":"J Daemen","year":"2002","unstructured":"Daemen, J., Rijmen, V.: The Design of Rijndael: AES - The Advanced Encryption Standard. Information Security and Cryptography. Springer, Heidelberg (2002). https:\/\/doi.org\/10.1007\/978-3-662-04722-4"},{"key":"22_CR24","doi-asserted-by":"crossref","unstructured":"Dai, W., Hoang, V.T., Tessaro, S.: Information-theoretic indistinguishability via the Chi-Squared method. In: Katz and Shacham [46], pp. 497\u2013523 (2017)","DOI":"10.1007\/978-3-319-63697-9_17"},{"key":"22_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"371","DOI":"10.1007\/978-3-642-38348-9_23","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2013","author":"P Derbez","year":"2013","unstructured":"Derbez, P., Fouque, P.-A., Jean, J.: Improved key recovery attacks on reduced-round, in the single-key setting. In: Johansson, T., Nguyen, P.Q. (eds.) EUROCRYPT 2013. LNCS, vol. 7881, pp. 371\u2013387. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-38348-9_23"},{"key":"22_CR26","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"337","DOI":"10.1007\/978-3-642-42033-7_18","volume-title":"Advances in Cryptology - ASIACRYPT 2013","author":"I Dinur","year":"2013","unstructured":"Dinur, I., Dunkelman, O., Keller, N., Shamir, A.: Key recovery attacks on 3-round even-mansour, 8-step LED-128, and Full AES2. In: Sako, K., Sarkar, P. (eds.) ASIACRYPT 2013, Part I. LNCS, vol. 8269, pp. 337\u2013356. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-42033-7_18"},{"key":"22_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"278","DOI":"10.1007\/978-3-642-01001-9_16","volume-title":"Advances in Cryptology - EUROCRYPT 2009","author":"I Dinur","year":"2009","unstructured":"Dinur, I., Shamir, A.: Cube attacks on tweakable black box polynomials. In: Joux, A. (ed.) EUROCRYPT 2009. LNCS, vol. 5479, pp. 278\u2013299. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1007\/978-3-642-01001-9_16"},{"key":"22_CR28","doi-asserted-by":"crossref","unstructured":"Dinur, I., Shamir, A.: Breaking grain-128 with dynamic cube attacks. In: Joux [45], pp. 167\u2013187 (2011)","DOI":"10.1007\/978-3-642-21702-9_10"},{"key":"22_CR29","doi-asserted-by":"publisher","unstructured":"Gennaro, R., Robshaw, M.J.B. (eds.): Advances in Cryptology - CRYPTO 2015, Part I, Santa Barbara, CA, USA, 16\u201320 August 2015. LNCS, vol. 9215. Springer, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-48000-7","DOI":"10.1007\/978-3-662-48000-7"},{"key":"22_CR30","unstructured":"Grassi, L.: Structural truncated differential attacks on round-reduced AES. Cryptology ePrint Archive, Report 2017\/832 (2017). http:\/\/eprint.iacr.org\/2017\/832"},{"issue":"2","key":"22_CR31","doi-asserted-by":"publisher","first-page":"133","DOI":"10.46586\/tosc.v2018.i2.133-160","volume":"2018","author":"L Grassi","year":"2018","unstructured":"Grassi, L.: Mixture differential cryptanalysis: a new approach to distinguishers and attacks on round-reduced AES. IACR Trans. Symmetr. Cryptol. 2018(2), 133\u2013160 (2018)","journal-title":"IACR Trans. Symmetr. Cryptol."},{"issue":"2","key":"22_CR32","first-page":"192","volume":"2016","author":"L Grassi","year":"2016","unstructured":"Grassi, L., Rechberger, C., R\u00f8njom, S.: Subspace trail cryptanalysis and its applications to AES. IACR Trans. Symmetr. Cryptol. 2016(2), 192\u2013225 (2016). http:\/\/tosc.iacr.org\/index.php\/ToSC\/article\/view\/571","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"22_CR33","unstructured":"Grassi, L., Rechberger, C., R\u00f8njom, S.: Subspace trail cryptanalysis and its applications to AES. Cryptology ePrint Archive, Report 2016\/592 (2016). http:\/\/eprint.iacr.org\/2016\/592"},{"key":"22_CR34","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"289","DOI":"10.1007\/978-3-319-56614-6_10","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2017","author":"L Grassi","year":"2017","unstructured":"Grassi, L., Rechberger, C., R\u00f8njom, S.: A new structural-differential property of 5-Round AES. In: Coron, J.-S., Nielsen, J.B. (eds.) EUROCRYPT 2017, Part II. LNCS, vol. 10211, pp. 289\u2013317. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-56614-6_10"},{"key":"22_CR35","doi-asserted-by":"crossref","unstructured":"Gueron, S., Lindell, Y.: Better bounds for block cipher modes of operation via nonce-based key derivation. In: Thuraisingham, B.M., Evans, D., Malkin, T., Xu, D. (eds.) ACM CCS 2017: 24th Conference on Computer and Communications Security, 31 October\u20132 November 2017, pp. 1019\u20131036. ACM Press, Dallas (2017)","DOI":"10.1145\/3133956.3133992"},{"issue":"3","key":"22_CR36","doi-asserted-by":"publisher","first-page":"798","DOI":"10.1007\/s00145-017-9271-y","volume":"31","author":"S Gueron","year":"2018","unstructured":"Gueron, S., Lindell, Y., Nof, A., Pinkas, B.: Fast garbling of circuits under standard assumptions. J. Cryptol. 31(3), 798\u2013844 (2018)","journal-title":"J. Cryptol."},{"key":"22_CR37","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"15","DOI":"10.1007\/978-3-662-46800-5_2","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2015","author":"VT Hoang","year":"2015","unstructured":"Hoang, V.T., Krovetz, T., Rogaway, P.: Robust authenticated-encryption AEZ and the problem that it solves. In: Oswald, E., Fischlin, M. (eds.) EUROCRYPT 2015, Part I. LNCS, vol. 9056, pp. 15\u201344. Springer, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-46800-5_2"},{"key":"22_CR38","doi-asserted-by":"crossref","unstructured":"Iwata, T., Minematsu, K., Peyrin, T., Seurin, Y.: ZMAC: a fast tweakable block cipher mode for highly secure message authentication. In: Katz and Shacham [46], pp. 34\u201365","DOI":"10.1007\/978-3-319-63697-9_2"},{"key":"22_CR39","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"687","DOI":"10.1007\/978-3-319-66787-4_33","volume-title":"Cryptographic Hardware and Embedded Systems \u2013 CHES 2017","author":"J Jean","year":"2017","unstructured":"Jean, J., Moradi, A., Peyrin, T., Sasdrich, P.: Bit-sliding: a generic technique for bit-serial implementations of SPN-based primitives. In: Fischer, W., Homma, N. (eds.) CHES 2017. LNCS, vol. 10529, pp. 687\u2013707. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-66787-4_33"},{"key":"22_CR40","unstructured":"Jean, J., Nikoli\u0107, I., Peyrin, T.: KIASU v1. Additional first-round candidates of CAESAR compeition (2014). https:\/\/competitions.cr.yp.to\/caesar-submissions.html"},{"key":"22_CR41","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"274","DOI":"10.1007\/978-3-662-45608-8_15","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2014","author":"J Jean","year":"2014","unstructured":"Jean, J., Nikoli\u0107, I., Peyrin, T.: Tweaks and keys for block ciphers: the TWEAKEY framework. In: Sarkar, P., Iwata, T. (eds.) ASIACRYPT 2014, Part II. LNCS, vol. 8874, pp. 274\u2013288. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-45608-8_15"},{"key":"22_CR42","unstructured":"Jean, J., Nikoli\u0107, I., Peyrin, T., Seurin, Y.: Deoxys-II. Finalist of CAESAR compeition (2014). https:\/\/competitions.cr.yp.to\/caesar-submissions.html"},{"key":"22_CR43","unstructured":"Jha, A., List, E., Minematsu, K., Mishra, S., Nandi, M.: XHX - a framework for optimally secure tweakable block ciphers from classical block ciphers and universal hashing. Cryptology ePrint Archive, Report 2017\/1075 (2017). https:\/\/eprint.iacr.org\/2017\/1075"},{"key":"22_CR44","unstructured":"Jha, A., Nandi, M.: Tight security of cascaded LRW2. Cryptology ePrint Archive, Report 2019\/1495 (2019). https:\/\/eprint.iacr.org\/2019\/1495"},{"key":"22_CR45","doi-asserted-by":"publisher","unstructured":"Joux, A. (ed.): Fast Software Encryption - FSE 2011, Lyngby, Denmark, 13\u201316 February 2011. LNCS, vol. 6733. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-21702-9","DOI":"10.1007\/978-3-642-21702-9"},{"key":"22_CR46","doi-asserted-by":"publisher","unstructured":"Katz, J., Shacham, H. (eds.): Advances in Cryptology - CRYPTO 2017, Part III, Santa Barbara, CA, USA, 20\u201324 August 2017. LNCS, vol. 10403. Springer, Heidelberg (2017). https:\/\/doi.org\/10.1007\/978-3-319-63688-7","DOI":"10.1007\/978-3-319-63688-7"},{"key":"22_CR47","unstructured":"Keliher, L., Sui, J.: Exact maximum expected differential and linear probability for 2-round advanced encryption standard (AES). Cryptology ePrint Archive, Report 2005\/321 (2005). http:\/\/eprint.iacr.org\/2005\/321"},{"key":"22_CR48","doi-asserted-by":"crossref","unstructured":"Knudsen, L.R. (ed.): Fast Software Encryption - FSE 1999, Germany, Rome, Italy 24\u201326 March 1999. LNCS, vol. 1636. Springer, Heidelberg (1999)","DOI":"10.1007\/3-540-48519-8"},{"key":"22_CR49","doi-asserted-by":"crossref","unstructured":"Krovetz, T., Rogaway, P.: The software performance of authenticated-encryption modes. In: Joux [45], pp. 306\u2013327 (2011)","DOI":"10.1007\/978-3-642-21702-9_18"},{"key":"22_CR50","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"133","DOI":"10.1007\/978-3-662-43933-3_8","volume-title":"Fast Software Encryption","author":"R Lampe","year":"2014","unstructured":"Lampe, R., Seurin, Y.: Tweakable blockciphers with asymptotically optimal security. In: Moriai, S. (ed.) FSE 2013. LNCS, vol. 8424, pp. 133\u2013151. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-43933-3_8"},{"key":"22_CR51","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"14","DOI":"10.1007\/978-3-642-32009-5_2","volume-title":"Advances in Cryptology \u2013 CRYPTO 2012","author":"W Landecker","year":"2012","unstructured":"Landecker, W., Shrimpton, T., Terashima, R.S.: Tweakable blockciphers with beyond birthday-bound security. In: Safavi-Naini, R., Canetti, R. (eds.) CRYPTO 2012. LNCS, vol. 7417, pp. 14\u201330. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-32009-5_2"},{"key":"22_CR52","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"206","DOI":"10.1007\/978-3-642-22792-9_12","volume-title":"Advances in Cryptology \u2013 CRYPTO 2011","author":"G Leander","year":"2011","unstructured":"Leander, G., Abdelraheem, M.A., AlKhzaimi, H., Zenner, E.: A cryptanalysis of PRINTcipher: the invariant subspace attack. In: Rogaway, P. (ed.) CRYPTO 2011. LNCS, vol. 6841, pp. 206\u2013221. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-22792-9_12"},{"key":"22_CR53","doi-asserted-by":"crossref","unstructured":"Lee, B., Lee, J.: Tweakable block ciphers secure beyond the birthday bound in the ideal cipher model. In: Peyrin and Galbraith [66], pp. 305\u2013335","DOI":"10.1007\/978-3-030-03326-2_11"},{"key":"22_CR54","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"31","DOI":"10.1007\/3-540-45708-9_3","volume-title":"Advances in Cryptology \u2014 CRYPTO 2002","author":"M Liskov","year":"2002","unstructured":"Liskov, M., Rivest, R.L., Wagner, D.: Tweakable block ciphers. In: Yung, M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 31\u201346. Springer, Heidelberg (2002). https:\/\/doi.org\/10.1007\/3-540-45708-9_3"},{"key":"22_CR55","doi-asserted-by":"crossref","unstructured":"Lu, J., Dunkelman, O., Keller, N., Kim, J.: New impossible differential attacks on AES. In: Chowdhury et al. [15], pp. 279\u2013293 (2011)","DOI":"10.1007\/978-3-540-89754-5_22"},{"key":"22_CR56","unstructured":"Mennink, B.: Optimally secure tweakable blockciphers. Cryptology ePrint Archive, Report 2015\/363 (2015). http:\/\/eprint.iacr.org\/2015\/363"},{"key":"22_CR57","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"64","DOI":"10.1007\/978-3-662-53018-4_3","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"B Mennink","year":"2016","unstructured":"Mennink, B.: XPX: generalized tweakable Even-Mansour with improved security guarantees. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016, Part I. LNCS, vol. 9814, pp. 64\u201394. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_3"},{"key":"22_CR58","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"708","DOI":"10.1007\/978-3-319-63715-0_24","volume-title":"Advances in Cryptology \u2013 CRYPTO 2017","author":"B Mennink","year":"2017","unstructured":"Mennink, B.: Insuperability of the standard versus ideal model gap for tweakable blockcipher security. In: Katz, J., Shacham, H. (eds.) CRYPTO 2017, Part II. LNCS, vol. 10402, pp. 708\u2013732. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-63715-0_24"},{"key":"22_CR59","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"192","DOI":"10.1007\/978-3-030-03810-6_8","volume-title":"Theory of Cryptography","author":"B Mennink","year":"2018","unstructured":"Mennink, B.: Towards tight security of cascaded LRW2. In: Beimel, A., Dziembowski, S. (eds.) TCC 2018, Part II. LNCS, vol. 11240, pp. 192\u2013222. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-030-03810-6_8"},{"issue":"3","key":"22_CR60","doi-asserted-by":"publisher","first-page":"228","DOI":"10.46586\/tosc.v2017.i3.228-252","volume":"2017","author":"B Mennink","year":"2017","unstructured":"Mennink, B., Neves, S.: Optimal PRFs from blockcipher designs. IACR Trans. Symmetr. Cryptol. 2017(3), 228\u2013252 (2017)","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"22_CR61","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"308","DOI":"10.1007\/978-3-642-03317-9_19","volume-title":"Fast Software Encryption","author":"K Minematsu","year":"2009","unstructured":"Minematsu, K.: Beyond-birthday-bound security based on tweakable block cipher. In: Dunkelman, O. (ed.) FSE 2009. LNCS, vol. 5665, pp. 308\u2013326. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1007\/978-3-642-03317-9_19"},{"key":"22_CR62","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"275","DOI":"10.1007\/978-3-642-55220-5_16","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2014","author":"K Minematsu","year":"2014","unstructured":"Minematsu, K.: Parallelizable rate-1 authenticated encryption from pseudorandom functions. In: Nguyen, P.Q., Oswald, E. (eds.) EUROCRYPT 2014. LNCS, vol. 8441, pp. 275\u2013292. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-642-55220-5_16"},{"key":"22_CR63","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"69","DOI":"10.1007\/978-3-642-20465-4_6","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2011","author":"A Moradi","year":"2011","unstructured":"Moradi, A., Poschmann, A., Ling, S., Paar, C., Wang, H.: Pushing the limits: a very compact and a threshold implementation of AES. In: Paterson, K.G. (ed.) EUROCRYPT 2011. LNCS, vol. 6632, pp. 69\u201388. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-20465-4_6"},{"key":"22_CR64","unstructured":"NIST: Lightweight Cryptography Competition (2019). https:\/\/csrc.nist.gov\/projects\/lightweight-cryptography"},{"issue":"3","key":"22_CR65","doi-asserted-by":"publisher","first-page":"469","DOI":"10.46586\/tches.v2018.i3.469-499","volume":"2018","author":"JH Park","year":"2018","unstructured":"Park, J.H., Lee, D.H.: FACE: Fast AES CTR mode encryption techniques based on the reuse of repetitive data. IACR Trans. Cryptogr. Hardw. Embedd. Syst. 2018(3), 469\u2013499 (2018). https:\/\/tches.iacr.org\/index.php\/TCHES\/article\/view\/7283","journal-title":"IACR Trans. Cryptogr. Hardw. Embedd. Syst."},{"key":"22_CR66","doi-asserted-by":"publisher","unstructured":"Peyrin, T., Galbraith, S. (eds.): Advances in Cryptology - ASIACRYPT 2018, Part I, Brisbane, Queensland, Australia, 2\u20136 December 2018. LNCS, vol. 11272. Springer, Heidelberg (2018). https:\/\/doi.org\/10.1007\/978-3-030-03326-2","DOI":"10.1007\/978-3-030-03326-2"},{"key":"22_CR67","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"16","DOI":"10.1007\/978-3-540-30539-2_2","volume-title":"Advances in Cryptology - ASIACRYPT 2004","author":"P Rogaway","year":"2004","unstructured":"Rogaway, P.: Efficient instantiations of tweakable blockciphers and refinements to modes OCB and PMAC. In: Lee, P.J. (ed.) ASIACRYPT 2004. LNCS, vol. 3329, pp. 16\u201331. Springer, Heidelberg (2004). https:\/\/doi.org\/10.1007\/978-3-540-30539-2_2"},{"key":"22_CR68","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"217","DOI":"10.1007\/978-3-319-70694-8_8","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2017","author":"S R\u00f8njom","year":"2017","unstructured":"R\u00f8njom, S., Bardeh, N.G., Helleseth, T.: Yoyo tricks with AES. In: Takagi, T., Peyrin, T. (eds.) ASIACRYPT 2017, Part I. LNCS, vol. 10624, pp. 217\u2013243. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-70694-8_8"},{"key":"22_CR69","doi-asserted-by":"crossref","unstructured":"Shrimpton, T., Terashima, R.S.: Salvaging weak security bounds for blockcipher-based constructions. In: Cheon and Takagi [14], pp. 429\u2013454 (2016)","DOI":"10.1007\/978-3-662-53887-6_16"},{"issue":"1","key":"22_CR70","doi-asserted-by":"publisher","first-page":"118","DOI":"10.46586\/tosc.v2019.i1.118-141","volume":"2019","author":"L Song","year":"2019","unstructured":"Song, L., Qin, X., Hu, L.: Boomerang connectivity table revisited. IACR Trans. Symmetr. Cryptol. 2019(1), 118\u2013141 (2019)","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"22_CR71","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"196","DOI":"10.1007\/978-3-662-49890-3_8","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2016","author":"B Sun","year":"2016","unstructured":"Sun, B., Liu, M., Guo, J., Rijmen, V., Li, R.: Provable security evaluation of structures against impossible differential and zero correlation linear cryptanalysis. In: Fischlin, M., Coron, J.-S. (eds.) EUROCRYPT 2016, Part I. LNCS, vol. 9665, pp. 196\u2013213. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-49890-3_8"},{"key":"22_CR72","doi-asserted-by":"crossref","unstructured":"Sun, B., et al.: Links among impossible differential, integral and zero correlation linear cryptanalysis. In: Gennaro and Robshaw [29], pp. 95\u2013115 (2015)","DOI":"10.1007\/978-3-662-47989-6_5"},{"issue":"1","key":"22_CR73","doi-asserted-by":"publisher","first-page":"281","DOI":"10.46586\/tosc.v2017.i1.281-306","volume":"2017","author":"S Sun","year":"2017","unstructured":"Sun, S., et al.: Analysis of AES, SKINNY, and others with constraint programming. IACR Trans. Symmetr. Cryptol. 2017(1), 281\u2013306 (2017)","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"22_CR74","doi-asserted-by":"crossref","unstructured":"Todo, Y.: Integral cryptanalysis on full MISTY1. In: Gennaro and Robshaw [29], pp. 413\u2013432 (2015)","DOI":"10.1007\/978-3-662-47989-6_20"},{"key":"22_CR75","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"357","DOI":"10.1007\/978-3-662-52993-5_18","volume-title":"Fast Software Encryption","author":"Y Todo","year":"2016","unstructured":"Todo, Y., Morii, M.: Bit-based division property and application to Simon family. In: Peyrin, T. (ed.) FSE 2016. LNCS, vol. 9783, pp. 357\u2013377. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-52993-5_18"},{"key":"22_CR76","doi-asserted-by":"crossref","unstructured":"Wagner, D.: The boomerang attack. In: Knudsen [48], pp. 156\u2013170 (1999)","DOI":"10.1007\/3-540-48519-8_12"},{"key":"22_CR77","doi-asserted-by":"crossref","unstructured":"Wang, L., Guo, J., Zhang, G., Zhao, J., Gu, D.: How to build fully secure tweakable blockciphers from classical blockciphers. In: Cheon and Takagi [14], pp. 455\u2013483 (2016)","DOI":"10.1007\/978-3-662-53887-6_17"},{"key":"22_CR78","unstructured":"Wu, H.: Hongjun\u2019s optimized C-code for AES-128 and AES-256. eSTREAM project (2007). http:\/\/www.ecrypt.eu.org\/stream\/svn\/viewcvs.cgi\/ecrypt\/trunk\/benchmarks\/aes-ctr\/aes-128\/hongjun\/v1\/?rev=203#dirlist"}],"container-title":["Lecture Notes in Computer Science","Advances in Cryptology \u2013 EUROCRYPT 2020"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-45724-2_22","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,5,1]],"date-time":"2023-05-01T00:11:54Z","timestamp":1682899914000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-45724-2_22"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030457235","9783030457242"],"references-count":78,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-45724-2_22","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"1 May 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"EUROCRYPT","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Annual International Conference on the Theory and Applications of Cryptographic Techniques","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Zagreb","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Croatia","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2020","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"10 May 2020","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 May 2020","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"eurocrypt2020","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/eurocrypt.iacr.org\/2020\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"IACR websubrev","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"375","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"81","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"22% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"20","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"The conference was held virtually due to the COVID-19 pandemic.","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}