{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,7]],"date-time":"2025-10-07T08:36:16Z","timestamp":1759826176385,"version":"3.37.3"},"reference-count":41,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2023,12,8]],"date-time":"2023-12-08T00:00:00Z","timestamp":1701993600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2023,12,8]],"date-time":"2023-12-08T00:00:00Z","timestamp":1701993600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"name":"Beijing Natural Science Foundation","award":["4232034"],"award-info":[{"award-number":["4232034"]}]},{"DOI":"10.13039\/501100012226","name":"Fundamental Research Funds for the Central Universities","doi-asserted-by":"publisher","award":["328202222"],"award-info":[{"award-number":["328202222"]}],"id":[{"id":"10.13039\/501100012226","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Cybersecurity"],"abstract":"<jats:title>Abstract<\/jats:title><jats:p>The attacker in white-box model has full access to software implementation of a cryptographic algorithm and full control over its execution environment. In order to solve the issues of high storage cost and inadequate security about most current white-box cryptographic schemes, WAS, an improved white-box cryptographic algorithm over AS iteration is proposed. This scheme utilizes the AS iterative structure to construct a lookup table with a five-layer ASASA structure, and the maximum distance separable matrix is used as a linear layer to achieve complete diffusion in a small number of rounds. Attackers can be prevented from recovering the key under black-box model. The length of nonlinear layer S and affine layer A in lookup table is 16 bits, which effectively avoids decomposition attack against the ASASA structure and makes the algorithm possess anti-key extraction security under the white-box model, while WAS possesses weak white-box (32\u00a0KB, 112)-space hardness to satisfy anti-code lifting security. WAS has provable security and better storage cost than existing schemes, with the same anti-key extraction security and anti-code lifting security, only 128\u00a0KB of memory space is required in WAS, which is only 14% of SPACE-16 algorithm and 33% of Yoroi-16 algorithm.<\/jats:p>","DOI":"10.1186\/s42400-023-00192-7","type":"journal-article","created":{"date-parts":[[2023,12,8]],"date-time":"2023-12-08T02:02:03Z","timestamp":1702000923000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["WAS: improved white-box cryptographic algorithm over AS iteration"],"prefix":"10.1186","volume":"6","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-0174-0997","authenticated-orcid":false,"given":"Yatao","family":"Yang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yuying","family":"Zhai","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hui","family":"Dong","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yanshuo","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,12,8]]},"reference":[{"issue":"2","key":"192_CR1","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3009909","volume":"13","author":"A Bacher","year":"2017","unstructured":"Bacher A, Bodini O, Hwang HK et al (2017) Generating random permutations by coin tossing: classical algorithms, new analysis, and modern implementation. ACM Trans Algorithms 13(2):1\u201343","journal-title":"ACM Trans Algorithms"},{"issue":"10","key":"192_CR2","doi-asserted-by":"publisher","first-page":"996","DOI":"10.1002\/sec.1394","volume":"9","author":"K Bai","year":"2016","unstructured":"Bai K, Wu C (2016) A secure white-box SM4 implementation. Secur Commun Netw 9(10):996\u20131006","journal-title":"Secur Commun Netw"},{"key":"192_CR3","unstructured":"Barreto P, Rijmen V (2000) The Khazad legacy-level block cipher. Primitive submitted to NESSIE 97(106)"},{"key":"192_CR4","volume-title":"Differential cryptanalysis of the data encryption standard","author":"E Biham","year":"2012","unstructured":"Biham E, Shamir A (2012) Differential cryptanalysis of the data encryption standard. Springer"},{"key":"192_CR5","doi-asserted-by":"crossref","unstructured":"Billet O, Gilbert H, Ech-Chatbi C (2004) Cryptanalysis of a white-box AES implementation. In: 11th International workshop on selected areas in cryptography. LNCS, vol 3357, pp 227\u2013240. Springer, Berlin","DOI":"10.1007\/978-3-540-30564-4_16"},{"issue":"4","key":"192_CR6","doi-asserted-by":"publisher","first-page":"505","DOI":"10.1007\/s00145-010-9062-1","volume":"23","author":"A Biryukov","year":"2010","unstructured":"Biryukov A, Shamir A (2010) Structural cryptanalysis of SASAS. J Cryptol 23(4):505\u2013518","journal-title":"J Cryptol"},{"key":"192_CR7","first-page":"646","volume":"2015","author":"A Biryukov","year":"2015","unstructured":"Biryukov A, Khovratovich D (2015) Decomposition attack on SASASASAS. Cryptology ePrint Arch 2015:646","journal-title":"Cryptology ePrint Arch"},{"key":"192_CR8","doi-asserted-by":"crossref","unstructured":"Biryukov A, Bouillaguet C, Khovratovich D (2014) Cryptographic schemes based on the ASASA structure: black-box, white-box, and public-key. In: 20th International conference on the theory and application of cryptology and information security. LNCS, vol 8873, pp 63\u201384. Springer, Berlin","DOI":"10.1007\/978-3-662-45611-8_4"},{"key":"192_CR9","doi-asserted-by":"crossref","unstructured":"Bogdanov A, Isobe T (2015) White-box cryptography revisited: space-hard ciphers. In: 22nd ACM SIGSAC conference on computer and communications security. ACM, New York, pp 1058\u20131069","DOI":"10.1145\/2810103.2813699"},{"key":"192_CR10","doi-asserted-by":"crossref","unstructured":"Bogdanov A, Khovratovich D, Rechberger C (2011) Biclique cryptanalysis of the full AES. In: 17th International conference on the theory and application of cryptology and information security. LNCS, vol 7073, pp 344\u2013371. Springer, Berlin","DOI":"10.1007\/978-3-642-25385-0_19"},{"key":"192_CR11","doi-asserted-by":"crossref","unstructured":"Bogdanov A, Isobe T, Tischhauser E (2016) Towards practical white-box cryptography: optimizing efficiency and space hardness. In: 22nd International conference on the theory and application of cryptology and information security. LNCS, vol 10031, pp 126\u2013158. Springer, Berlin","DOI":"10.1007\/978-3-662-53887-6_5"},{"key":"192_CR12","doi-asserted-by":"crossref","unstructured":"Bos J, Hubain C, Michiels W, et al (2016) Differential computation analysis: hiding your white-box designs is not enough. In: International conference on cryptographic hardware and embedded systems. LNCS, vol 9813, pp 215\u2013236. Springer, Berlin","DOI":"10.1007\/978-3-662-53140-2_11"},{"issue":"51","key":"192_CR13","first-page":"468","volume":"2006","author":"J Bringer","year":"2006","unstructured":"Bringer J, Chabanne H, Dottax E (2006) White-box cryptography: another attempt. IACR Cryptol ePrint Arch 2006(51):468","journal-title":"IACR Cryptol ePrint Arch"},{"key":"192_CR14","doi-asserted-by":"crossref","unstructured":"Chari S, Rao JR, Rohatgi P (2002) Template attacks. In: 4th International workshop on cryptographic hardware and embedded systems. LNCS, vol 2523, pp 13\u201328. Springer, Berlin","DOI":"10.1007\/3-540-36400-5_3"},{"issue":"02","key":"192_CR15","first-page":"16","volume":"21","author":"J Chen","year":"2021","unstructured":"Chen J, Tong P, Yao S (2021) A white-box implementation of lightweight block cipher GIFT. Inf Netw Secur 21(02):16\u201323","journal-title":"Inf Netw Secur"},{"key":"192_CR16","doi-asserted-by":"crossref","unstructured":"Chow S, Eisen P, Johnson H, et al (2002a) White-box cryptography and an AES implementation. In: 9th International workshop on selected areas in cryptography. LNCS, vol 2595, pp 250\u2013270. Springer, Berlin","DOI":"10.1007\/3-540-36492-7_17"},{"key":"192_CR17","doi-asserted-by":"crossref","unstructured":"Chow S, Eisen P, Johnson H, et al (2002b) A white-box DES implementation for DRM applications. In: ACM workshop on digital rights management. LNCS, vol 2696, pp 1\u201315. Springer, Berlin","DOI":"10.1007\/978-3-540-44993-5_1"},{"key":"192_CR18","doi-asserted-by":"crossref","unstructured":"Derbez P, Fouque PA, Jean J (2013) Improved key recovery attacks on reduced-round AES in the single-key setting. In: 32nd Annual international conference on the theory and applications of cryptographic techniques. LNCS, vol 7881, pp 371\u2013387. Springer, Berlin","DOI":"10.1007\/978-3-642-38348-9_23"},{"key":"192_CR19","unstructured":"Dinur I, Dunkelman O, Kranz T, et al (2015) Decomposing the ASASA block cipher construction. Cryptol ePrint Arch"},{"key":"192_CR20","volume-title":"Design and analysis of block ciphers","author":"D Feng","year":"2000","unstructured":"Feng D, Wu W (2000) Design and analysis of block ciphers. Tsinghua University Press, Beijing"},{"key":"192_CR21","doi-asserted-by":"crossref","unstructured":"Fouque P, Karpman P, Kirchner P, et al (2016) Efficient and provable white-box primitives. In: 22nd International conference on the theory and application of cryptology and information security. LNCS, vol 10031, pp 159\u2013188. Springer, Berlin","DOI":"10.1007\/978-3-662-53887-6_6"},{"key":"192_CR22","doi-asserted-by":"crossref","unstructured":"Gilbert H, Pl\u00fbt J, Treger J (2015) Key-recovery attack on the ASASA cryptosystem with expanding S-boxes. In: 35th Annual cryptology conference. LNCS, vol 9215, pp 475\u2013490. Springer, Berlin","DOI":"10.1007\/978-3-662-47989-6_23"},{"key":"192_CR23","doi-asserted-by":"crossref","unstructured":"Karroumi M (2010) Protecting white-box AES with dual ciphers. In: 13th International conference on information security and cryptology. LNCS, vol 6829, pp 278\u2013291. Springer, Berlin","DOI":"10.1007\/978-3-642-24209-0_19"},{"key":"192_CR24","doi-asserted-by":"crossref","unstructured":"Kocher P (1996) Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. In: 16th Annual international cryptology conference. LNCS, vol 1109, pp 104\u2013113. Springer, Berlin","DOI":"10.1007\/3-540-68697-5_9"},{"issue":"4","key":"192_CR25","doi-asserted-by":"publisher","first-page":"587","DOI":"10.46586\/tches.v2021.i4.587-617","volume":"2021","author":"Y Koike","year":"2021","unstructured":"Koike Y, Isobe T (2021) Yoroi: updatable white-box cryptography. IACR Trans Cryptogr Hardw Embed Syst 2021(4):587\u2013617","journal-title":"IACR Trans Cryptogr Hardw Embed Syst"},{"key":"192_CR26","volume-title":"Differential fault attacks against Feistel and SPN cryptographic structures","author":"M Kong","year":"2021","unstructured":"Kong M (2021) Differential fault attacks against Feistel and SPN cryptographic structures. Changsha University of Science and Technology, Changsha"},{"key":"192_CR27","doi-asserted-by":"crossref","unstructured":"Kwon J, Lee B, Lee J, et al (2020) FPL: white-box secure block cipher using parallel table lookups. In: Cryptographers\u2019 track at the RSA conference. LNCS, vol 12006, pp 106\u2013128. Springer, Berlin","DOI":"10.1007\/978-3-030-40186-3_6"},{"issue":"9","key":"192_CR28","first-page":"2238","volume":"24","author":"T Lin","year":"2013","unstructured":"Lin T, Lai X (2013) An effective attack on white box SMS4 implementation. J Softw 24(9):2238\u20132249","journal-title":"J Softw"},{"issue":"2","key":"192_CR29","doi-asserted-by":"publisher","first-page":"386","DOI":"10.1007\/s11390-017-1727-x","volume":"32","author":"T Lin","year":"2017","unstructured":"Lin T, Lai X, Xue W et al (2017) A new Feistel type white-box encryption scheme. J Comput Sci Technol 32(2):386\u2013395","journal-title":"J Comput Sci Technol"},{"issue":"3","key":"192_CR30","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/s11432-020-3105-1","volume":"65","author":"J Liu","year":"2022","unstructured":"Liu J, Rijmen V, Hu Y et al (2022) WARX: efficient white-box block cipher based on ARX primitives and random MDS matrix. Sci China Inf Sci 65(3):1\u201315","journal-title":"Sci China Inf Sci"},{"key":"192_CR31","doi-asserted-by":"crossref","unstructured":"Lu J, Li J (2021) Cryptanalysis of two white-box implementations of the SM4 block cipher. In: 24th International conference on information security. LNCS, vol 13118, pp 54\u201369. Springer, Berlin","DOI":"10.1007\/978-3-030-91356-4_4"},{"key":"192_CR32","doi-asserted-by":"crossref","unstructured":"Luo R, Lai X, You R (2014) A new attempt of white-box AES implementation. In: IEEE International conference on security, pattern analysis, and cybernetics, pp 423\u2013429. IEEE, New Jersey","DOI":"10.1109\/SPAC.2014.6982727"},{"key":"192_CR33","doi-asserted-by":"crossref","unstructured":"Matsui M (1993) Linear cryptanalysis method for DES cipher. In: Workshop on the theory and application of cryptographic techniques. LNCS, vol 765, pp 386\u2013397. Springer, Berlin","DOI":"10.1007\/3-540-48285-7_33"},{"issue":"3","key":"192_CR34","doi-asserted-by":"publisher","first-page":"845","DOI":"10.1007\/s00145-017-9272-x","volume":"31","author":"B Minaud","year":"2018","unstructured":"Minaud B, Derbez P, Fouque PA et al (2018) Key-recovery attacks on ASASA. J Cryptol 31(3):845\u2013884","journal-title":"J Cryptol"},{"issue":"6","key":"192_CR35","first-page":"651","volume":"5","author":"W Pan","year":"2018","unstructured":"Pan W, Qin T, Jia Y et al (2018) Analysis of two SM4 white-box schemes. J Cryptol Res 5(6):651\u2013671","journal-title":"J Cryptol Res"},{"issue":"3","key":"192_CR36","first-page":"358","volume":"7","author":"Y Si","year":"2020","unstructured":"Si Y, Jie C (2020) A new white box implementation of SM4 algorithm. J Cryptol Res 7(3):358\u2013374","journal-title":"J Cryptol Res"},{"key":"192_CR37","volume-title":"White box cryptography and implementation of AES and SMS4 algorithms","author":"Y Xiao","year":"2010","unstructured":"Xiao Y (2010) White box cryptography and implementation of AES and SMS4 algorithms. Shanghai Jiaotong University"},{"key":"192_CR38","unstructured":"Xiao Y, Lai X (2009a) White box cryptography and white box implementation of SMS4 algorithm. In: 2009 Annual meeting of Chinese cryptography society, pp 24\u201334. Science Press, Beijing"},{"key":"192_CR39","doi-asserted-by":"crossref","unstructured":"Xiao Y, Lai X (2009b) A secure implementation of white-box AES. In: 2nd IEEE international conference on computer science and its applications, pp 1\u20136","DOI":"10.1109\/CSA.2009.5404239"},{"issue":"05","key":"192_CR40","first-page":"150","volume":"47","author":"S Yao","year":"2020","unstructured":"Yao S, Chen J, Yating G et al (2020) A new white-box implementation of CLEFIA algorithm. J Xidian Univ 47(05):150\u2013158","journal-title":"J Xidian Univ"},{"key":"192_CR41","first-page":"1","volume":"43","author":"Y Zhang","year":"2021","unstructured":"Zhang Y, Xu D, Chen J (2021) Analysis and Improvement of white-box SM4 implementation. J Electron Inf Technol 43:1\u201311","journal-title":"J Electron Inf Technol"}],"container-title":["Cybersecurity"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-023-00192-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s42400-023-00192-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-023-00192-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,12,8]],"date-time":"2023-12-08T02:08:31Z","timestamp":1702001311000},"score":1,"resource":{"primary":{"URL":"https:\/\/cybersecurity.springeropen.com\/articles\/10.1186\/s42400-023-00192-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,12,8]]},"references-count":41,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2023,12]]}},"alternative-id":["192"],"URL":"https:\/\/doi.org\/10.1186\/s42400-023-00192-7","relation":{},"ISSN":["2523-3246"],"issn-type":[{"type":"electronic","value":"2523-3246"}],"subject":[],"published":{"date-parts":[[2023,12,8]]},"assertion":[{"value":"4 May 2023","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"18 September 2023","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"8 December 2023","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare that they have no competing interests.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"56"}}