Makoto Sugita scite author profile

Makoto Sugita

5Publications

138Citation Statements Received

86Citation Statements Given

How they've been cited

174

138

How they cite others

Affiliations

Information-Technology Promotion Agency, NTT (Japan)

Publications

Order By: Most citations

Comparison Between XL and Gröbner Basis Algorithms

Ars

Faugère

Imai

et al. 2004

View full text Add to dashboard Cite

Abstract. This paper compares the XL algorithm with known Gröbner basis algorithms. We show that to solve a system of algebraic equations via the XL algorithm is equivalent to calculate the reduced Gröbner basis of the ideal associated with the system. Moreover we show that the XL algorithm is also a Gröbner basis algorithm which can be represented as a redundant variant of a Gröbner basis algorithm F4. Then we compare these algorithms on semi-regular sequences, which correspond, in conjecture, to almost all polynomial systems in two cases: over the fields F2 and Fq with q n. We show that the size of the matrix constructed by XL is large compared to the ones of the F5 algorithm. Finally, we give an experimental study between XL and the Buchberger algorithm on the cryptosystem HFE and find that the Buchberger algorithm has a better behavior.

show abstract

Security of Reduced Version of the Block Cipher Camellia against Truncated and Impossible Differential Cryptanalysis

Sugita

Kobara

Imai

2001

View full text Add to dashboard Cite

This paper describes truncated and impossible differential cryptanalysis of the 128-bit block cipher Camellia, which was proposed by NTT and Mitsubishi Electric Corporation. Our work improves on the best known truncated and impossible differential cryptanalysis. As a result, we show a nontrivial 9-round byte characteristic, which may lead to a possible attack of reduced-round version of Camellia without input/output whitening, F L or F L −1 in a chosen plain text scenario. Previously, only 6-round differentials were known, which may suggest a possible attack of Camellia reduced to 8-rounds. Moreover, we show a nontrivial 7-round impossible differential, whereas only a 5-round impossible differential was previously known. This cryptanalysis is effective against general Feistel structures with round functions composed of S-D (Substitution and Diffusion) transformation.

show abstract

Security of E2 against Truncated Differential Cryptanalysis

Moriai

Sugita

Aoki

et al. 2000

View full text Add to dashboard Cite

Abstract. This paper studies the security offered by the block cipher E2 against truncated differential cryptanalysis. At FSE'99 Matsui and Tokita showed a possible attack on an 8-round variant of E2 without ITFunction (the initial transformation) and F T -Function (the final transformation) based on byte characteristics. To evaluate the security against attacks using truncated differentials, which mean bytewise differentials in this paper, we searched for all truncated differentials that lead to possible attacks for reduced-round variants of E2. As a result, we confirmed that there exist no such truncated differentials for E2 with more than 8 rounds. However, we found another 7-round truncated differential which lead to another possible attack on an 8-round variant of E2 without ITor F T -Function with less complexity. We also found that the 7-round truncated differential is useful to distinguish a 7-round variant of E2 with IT -and F T -Functions from a random permutation. In spite of our severe examination, this type of cryptanalysis fails to break the full E2. We believe that this means that the full E2 offers strong security against this truncated differential cryptanalysis.

show abstract

Relation between the XL Algorithm and Grobner Basis Algorithms

Sugita

Kawazoe

Imai

2006

IEICE Transactions on Fundamentals of Electronics, Communicatio

View full text Add to dashboard Cite

We clarify a relation between the XL algorithm and known Gröbner basis algorithms. The XL algorithm was proposed to be a more efficient algorithm to solve a system of algebraic equations under a special condition, without calculating a whole Gröbner basis. But in our result, it is shown that to solve a system of algebraic equations with a special condition under which the XL algorithm works is equivalent to calculate the reduced Gröbner basis of the ideal associated with the system. Moreover we show that the XL algorithm is a Gröbner basis algorithm which can be represented as a redundant variant of a known Gröbner basis algorithm F 4 .

show abstract

Algebraic Cryptanalysis of 58-Round SHA-1

Sugita¹,

Kawazoe²,

Perret³

et al.

View full text Add to dashboard Cite

Abstract. In 2004, a new attack against SHA-1 has been proposed by a team leaded by Wang [15]. The aim of this article 1 is to sophisticate and improve Wang's attack by using algebraic techniques. We introduce new notions, namely semi-neutral bit and adjuster and propose then an improved message modification technique based on algebraic techniques. In the case of the 58-round SHA-1, the experimental complexity of our improved attack is 2 31 SHA-1 computations, whereas Wang's method needs 2 34 SHA-1 computations. We have found many new collisions for the 58-round SHA-1. We also study the complexity of our attack for the full SHA-1.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Makoto Sugita

Comparison Between XL and Gröbner Basis Algorithms

Security of Reduced Version of the Block Cipher Camellia against Truncated and Impossible Differential Cryptanalysis

Security of E2 against Truncated Differential Cryptanalysis

Relation between the XL Algorithm and Grobner Basis Algorithms

Algebraic Cryptanalysis of 58-Round SHA-1

Contact Info

Product

Resources

About