Impossible differential cryptanalysis of zodiac

Deukjo Hong, Jaechul Sung, Shiho Moriai, Sangjin Lee, Jongin Lim

Research output: Chapter in Book/Report/Conference proceedingConference contribution

10 Citations (Scopus)


We discuss the impossible differential cryptanalysis of the blockcipher Zodiac [7]. The main design principles of Zodiac are simplicity and efficiency. However the diffusion layer in its round function is too simple to offer enough security. An impossible differential cryptanalysis is a proper method to attackthe weakness of Zodiac. Our attack using two 14-round impossible characteristics derives 128-bit master key of the full 16-round Zodiac with its complexity 2119 encryption times faster than the exhaustive search. The efficiency of the attackcompared with exhaustive search increases as the key size increases.

Original languageEnglish
Title of host publicationFast Software Encryption - 8th International Workshop, FSE 2001, Revised Papers
EditorsMitsuru Matsui
PublisherSpringer Verlag
Number of pages12
ISBN (Print)3540438696, 9783540438694
Publication statusPublished - 2002
Event8th International Workshop on Fast Software Encryption, FSE 2001 - Yokohama, Japan
Duration: 2001 Apr 22001 Apr 4

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


Other8th International Workshop on Fast Software Encryption, FSE 2001

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)


Dive into the research topics of 'Impossible differential cryptanalysis of zodiac'. Together they form a unique fingerprint.

Cite this