{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T12:42:23Z","timestamp":1743079343061,"version":"3.40.3"},"publisher-location":"Cham","reference-count":38,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031828409"},{"type":"electronic","value":"9783031828416"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-82841-6_10","type":"book-chapter","created":{"date-parts":[[2025,3,12]],"date-time":"2025-03-12T12:24:57Z","timestamp":1741782297000},"page":"239-266","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Koala: A Low-Latency Pseudorandom Function"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0003-2881-8314","authenticated-orcid":false,"given":"Parisa","family":"Amiri Eliasi","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0009-0004-0314-9385","authenticated-orcid":false,"given":"Yanis","family":"Belkheyar","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4102-0775","authenticated-orcid":false,"given":"Joan","family":"Daemen","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0069-7971","authenticated-orcid":false,"given":"Santosh","family":"Ghosh","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5651-6431","authenticated-orcid":false,"given":"Dani\u00ebl","family":"Kuijsters","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6341-7944","authenticated-orcid":false,"given":"Alireza","family":"Mehrdad","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4664-3541","authenticated-orcid":false,"given":"Silvia","family":"Mella","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6848-2227","authenticated-orcid":false,"given":"Shahram","family":"Rasoolzadeh","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5003-8937","authenticated-orcid":false,"given":"Gilles","family":"Van Assche","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,3,13]]},"reference":[{"key":"10_CR1","doi-asserted-by":"publisher","unstructured":"Anand, R., et al.: Gleeok: a family of low-latency PRFs and its applications to authenticated encryption. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2024(2), 545\u2013587 (2024). https:\/\/doi.org\/10.46586\/TCHES.V2024.I2.545-587","DOI":"10.46586\/TCHES.V2024.I2.545-587"},{"key":"10_CR2","doi-asserted-by":"crossref","unstructured":"Avanzi, R.: The QARMA block cipher family. almost MDS matrices over rings with zero divisors, nearly symmetric even-mansour constructions with non-involutory central rounds, and search heuristics for low-latency s-boxes. IACR Trans. Symmetric Cryptol. 2017(1), 4\u201344 (2017)","DOI":"10.46586\/tosc.v2017.i1.4-44"},{"key":"10_CR3","unstructured":"Banik, S.: Orthros (2021). https:\/\/github.com\/subhadeep-banik\/orthros"},{"issue":"1","key":"10_CR4","doi-asserted-by":"publisher","first-page":"37","DOI":"10.46586\/tosc.v2021.i1.37-77","volume":"2021","author":"S Banik","year":"2021","unstructured":"Banik, S., Isobe, T., Liu, F., Minematsu, K., Sakamoto, K.: Orthros: a low-latency PRF. IACR Trans. Symmetric Cryptol. 2021(1), 37\u201377 (2021)","journal-title":"IACR Trans. Symmetric Cryptol."},{"key":"10_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"123","DOI":"10.1007\/978-3-662-53008-5_5","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"C Beierle","year":"2016","unstructured":"Beierle, C., et al.: The SKINNY Family of Block Ciphers and Its Low-Latency Variant MANTIS. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9815, pp. 123\u2013153. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53008-5_5"},{"issue":"1","key":"10_CR6","first-page":"326","volume":"2023","author":"Y Belkheyar","year":"2023","unstructured":"Belkheyar, Y., Daemen, J., Dobraunig, C., Ghosh, S., Rasoolzadeh, S.: BipBip: a low-latency tweakable block cipher with small dimensions. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2023(1), 326\u2013368 (2023)","journal-title":"IACR Trans. Cryptogr. Hardw. Embed. Syst."},{"key":"10_CR7","doi-asserted-by":"publisher","first-page":"245","DOI":"10.1007\/3-540-48519-8_18","volume-title":"Fast Software Encryption","author":"A Biryukov","year":"1999","unstructured":"Biryukov, A., Wagner, D.: Slide attacks. In: Knudsen, L. (ed.) Fast Software Encryption, pp. 245\u2013259. Springer, Berlin Heidelberg, Berlin, Heidelberg (1999)"},{"key":"10_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"337","DOI":"10.1007\/978-3-030-84252-9_12","volume-title":"Advances in Cryptology \u2013 CRYPTO 2021","author":"N Bordes","year":"2021","unstructured":"Bordes, N., Daemen, J., Kuijsters, D., Van Assche, G.: Thinking outside the superbox. In: Malkin, T., Peikert, C. (eds.) CRYPTO 2021. LNCS, vol. 12827, pp. 337\u2013367. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-84252-9_12"},{"key":"10_CR9","doi-asserted-by":"crossref","unstructured":"Borghoff, J., et al.: PRINCE - a low-latency block cipher for pervasive computing applications - extended abstract. In: Wang, X., Sako, K. (eds.) Advances in Cryptology - ASIACRYPT 2012 - 18th International Conference on the Theory and Application of Cryptology and Information Security, Beijing, China, December 2-6, 2012. Proceedings. Lecture Notes in Computer Science, vol.\u00a07658, pp. 208\u2013225. Springer (2012)","DOI":"10.1007\/978-3-642-34961-4_14"},{"key":"10_CR10","doi-asserted-by":"crossref","unstructured":"Bozilov, D., et al.: PRINCEv2 - more security for (almost) no overhead. In: Dunkelman, O., Jr., M.J.J., O\u2019Flynn, C. (eds.) Selected Areas in Cryptography - SAC 2020 - 27th International Conference, Halifax, NS, Canada (Virtual Event), October 21-23, 2020, Revised Selected Papers. Lecture Notes in Computer Science, vol. 12804, pp. 483\u2013511. Springer (2020)","DOI":"10.1007\/978-3-030-81652-0_19"},{"key":"10_CR11","unstructured":"Caforio, A.: Gleeok (2023). https:\/\/github.com\/qantik\/gleeok"},{"key":"10_CR12","unstructured":"Canale, F., G\u00fcneysu, T., Leander, G., Thoma, J.P., Todo, Y., Ueno, R.: SCARF - a low-latency block cipher for secure cache-randomization. In: Calandrino, J.A., Troncoso, C. (eds.) 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023. USENIX Association (2023)"},{"key":"10_CR13","doi-asserted-by":"crossref","unstructured":"Claesen, L.J.M., Daemen, J., Genoe, M., Peeters, G.: Subterranean: A 600 Mbit\/sec cryptographic VLSI chip. In: Proceedings 1993 International Conference on Computer Design: VLSI in Computers & Processors, ICCD \u201993, Cambridge, MA, USA, October 3-6, pp. 610\u2013613 (1993). IEEE Computer Society (1993)","DOI":"10.1109\/ICCD.1993.393304"},{"key":"10_CR14","unstructured":"Cormen, T.H., Leiserson, C.E., Rivest, R.L., Stein, C.: Introduction to Algorithms. The MIT Press, 2nd edn. (2001)"},{"key":"10_CR15","unstructured":"Cox, D.A., Little, J., O\u2019Shea, D.: Ideals, Varieties, and Algorithms. Undergraduate Texts in Mathematics, Springer, fourth edn. (2015)"},{"key":"10_CR16","unstructured":"Daemen, J.: Cipher and hash function design, strategies based on linear and differential cryptanalysis, PhD Thesis. K.U.Leuven (1995). http:\/\/jda.noekeon.org\/"},{"issue":"4","key":"10_CR17","doi-asserted-by":"publisher","first-page":"1","DOI":"10.46586\/tosc.v2018.i4.1-38","volume":"2018","author":"J Daemen","year":"2018","unstructured":"Daemen, J., Hoffert, S., Assche, G.V., Keer, R.V.: The design of Xoodoo and Xoofff. IACR Trans. Symmetric Cryptol. 2018(4), 1\u201338 (2018)","journal-title":"IACR Trans. Symmetric Cryptol."},{"key":"10_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"149","DOI":"10.1007\/BFb0052343","volume-title":"Fast Software Encryption","author":"J Daemen","year":"1997","unstructured":"Daemen, J., Knudsen, L., Rijmen, V.: The block cipher Square. In: Biham, E. (ed.) FSE 1997. LNCS, vol. 1267, pp. 149\u2013165. Springer, Heidelberg (1997). https:\/\/doi.org\/10.1007\/BFb0052343"},{"key":"10_CR19","doi-asserted-by":"crossref","unstructured":"Daemen, J., Massolino, P.M.C., Rotella, Y.: The Subterranean 2.0 cipher suite, 2019 (2019)","DOI":"10.46586\/tosc.v2020.iS1.262-294"},{"key":"10_CR20","doi-asserted-by":"publisher","unstructured":"Derbez, P., Lambin, B.: Fast MILP models for division property. IACR Trans. Symmetric Cryptol. 2022(2), 289\u2013321 (2022). https:\/\/doi.org\/10.46586\/TOSC.V2022.I2.289-321","DOI":"10.46586\/TOSC.V2022.I2.289-321"},{"key":"10_CR21","doi-asserted-by":"crossref","unstructured":"Dinur, I., Shamir, A.: Cube attacks on tweakable black box polynomials. IACR Cryptol. ePrint Arch. p.\u00a0385 (2008)","DOI":"10.1007\/978-3-642-01001-9_16"},{"issue":"3","key":"10_CR22","doi-asserted-by":"publisher","first-page":"151","DOI":"10.1007\/s001459900025","volume":"10","author":"S Even","year":"1997","unstructured":"Even, S., Mansour, Y.: A construction of a cipher from a single pseudorandom permutation. J. Cryptol. 10(3), 151\u2013161 (1997). https:\/\/doi.org\/10.1007\/s001459900025","journal-title":"J. Cryptol."},{"key":"10_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"268","DOI":"10.1007\/978-3-662-52993-5_14","volume-title":"Fast Software Encryption","author":"K Fu","year":"2016","unstructured":"Fu, K., Wang, M., Guo, Y., Sun, S., Hu, L.: MILP-based automatic search algorithms for differential and linear trails for speck. In: Peyrin, T. (ed.) FSE 2016. LNCS, vol. 9783, pp. 268\u2013288. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-52993-5_14"},{"key":"10_CR24","unstructured":"Gurobi Optimization, LLC: Gurobi Optimizer Reference Manual (2023)"},{"key":"10_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"466","DOI":"10.1007\/978-3-030-45721-1_17","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2020","author":"Y Hao","year":"2020","unstructured":"Hao, Y., Leander, G., Meier, W., Todo, Y., Wang, Q.: Modeling for three-subset division property without unknown subset. In: Canteaut, A., Ishai, Y. (eds.) EUROCRYPT 2020. LNCS, vol. 12105, pp. 466\u2013495. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-45721-1_17"},{"issue":"3","key":"10_CR26","doi-asserted-by":"publisher","first-page":"22","DOI":"10.1007\/s00145-021-09383-2","volume":"34","author":"Y Hao","year":"2021","unstructured":"Hao, Y., Leander, G., Meier, W., Todo, Y., Wang, Q.: Modeling for three-subset division property without unknown subset. J. Cryptol. 34(3), 22 (2021)","journal-title":"J. Cryptol."},{"key":"10_CR27","doi-asserted-by":"crossref","unstructured":"Huang, S., Wang, X., Xu, G., Wang, M., Zhao, J.: Conditional cube attack on reduced-round Keccak sponge function. IACR Cryptol. ePrint Arch. p.\u00a0790 (2016)","DOI":"10.1007\/978-3-319-56614-6_9"},{"key":"10_CR28","doi-asserted-by":"crossref","unstructured":"Lai, X.: Higher order derivatives and differential cryptanalysis (1994)","DOI":"10.1007\/978-1-4615-2694-0_23"},{"issue":"4","key":"10_CR29","doi-asserted-by":"publisher","first-page":"510","DOI":"10.46586\/tches.v2021.i4.510-545","volume":"2021","author":"G Leander","year":"2021","unstructured":"Leander, G., Moos, T., Moradi, A., Rasoolzadeh, S.: The SPEEDY family of block ciphers engineering an ultra low-latency cipher from gate level for secure processor architectures. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2021(4), 510\u2013545 (2021)","journal-title":"IACR Trans. Cryptogr. Hardw. Embed. Syst."},{"key":"10_CR30","unstructured":"Lefevre, C., Belkheyar, Y., Daemen, J.: Kirby: A robust permutation-based PRF construction. Cryptology ePrint Archive, Paper 2023\/1520 (2023). https:\/\/eprint.iacr.org\/2023\/1520"},{"issue":"2","key":"10_CR31","doi-asserted-by":"publisher","first-page":"253","DOI":"10.46586\/tosc.v2022.i2.253-288","volume":"2022","author":"A Mehrdad","year":"2022","unstructured":"Mehrdad, A., Mella, S., Grassi, L., Daemen, J.: Differential trail search in cryptographic primitives with big-circle chi: application to Subterranean. IACR Trans. Symmetric Cryptol. 2022(2), 253\u2013288 (2022)","journal-title":"IACR Trans. Symmetric Cryptol."},{"issue":"1","key":"10_CR32","doi-asserted-by":"publisher","first-page":"329","DOI":"10.46586\/tosc.v2017.i1.329-357","volume":"2017","author":"S Mella","year":"2017","unstructured":"Mella, S., Daemen, J., Assche, G.V.: New techniques for trail bounds and application to differential trails in Keccak. IACR Trans. Symmetric Cryptol. 2017(1), 329\u2013357 (2017)","journal-title":"IACR Trans. Symmetric Cryptol."},{"key":"10_CR33","doi-asserted-by":"crossref","unstructured":"Shi, D., Hu, L., Sun, S., Song, L., Qiao, K., Ma, X.: Improved linear (hull) cryptanalysis of round-reduced versions of SIMON. Sci. China Inf. Sci. 60(3), 39101:1\u201339101:3 (2017)","DOI":"10.1007\/s11432-015-0007-1"},{"key":"10_CR34","volume-title":"Enumerative Combinatorics, Cambridge Studies in Advanced Mathematics","author":"RP Stanley","year":"2012","unstructured":"Stanley, R.P.: Enumerative Combinatorics, Cambridge Studies in Advanced Mathematics, vol. 1. Cambridge University Press, Cambridge, NY (2012)"},{"issue":"1","key":"10_CR35","doi-asserted-by":"publisher","first-page":"12","DOI":"10.1049\/IET-IFS.2018.5283","volume":"14","author":"L Sun","year":"2020","unstructured":"Sun, L., Wang, W., Wang, M.: MILP-aided bit-based division property for primitives with non-bit-permutation linear layers. IET Inf. Secur. 14(1), 12\u201320 (2020). https:\/\/doi.org\/10.1049\/IET-IFS.2018.5283","journal-title":"IET Inf. Secur."},{"key":"10_CR36","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"287","DOI":"10.1007\/978-3-662-46800-5_12","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2015","author":"Y Todo","year":"2015","unstructured":"Todo, Y.: Structural evaluation by generalized integral property. In: Oswald, E., Fischlin, M. (eds.) EUROCRYPT 2015. LNCS, vol. 9056, pp. 287\u2013314. Springer, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-46800-5_12"},{"key":"10_CR37","doi-asserted-by":"crossref","unstructured":"Todo, Y., Morii, M.: Bit-based division property and application to Simon family. IACR Cryptol. ePrint Arch. p.\u00a0285 (2016)","DOI":"10.1007\/978-3-662-52993-5_18"},{"key":"10_CR38","unstructured":"Wang, S., Hu, B., Guan, J., Zhang, K., Shi, T.: MILP method of searching integral distinguishers based on division property using three subsets. IACR Cryptol. ePrint Arch. p.\u00a01186 (2018). https:\/\/eprint.iacr.org\/2018\/1186"}],"container-title":["Lecture Notes in Computer Science","Selected Areas in Cryptography \u2013 SAC 2024"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-82841-6_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,12]],"date-time":"2025-03-12T12:25:09Z","timestamp":1741782309000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-82841-6_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031828409","9783031828416"],"references-count":38,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-82841-6_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"13 March 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SAC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Selected Areas in Cryptography","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Montreal, QC","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Canada","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29 August 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31 August 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"sacrypt2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/sacworkshop.org\/SAC24\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}