Weifeng Jin,Fangyue Chen,Guanrong Chen,Lin Chen,Fangfang Chen

2010-01-01

Journal of cellular automata

Abstract:In this paper, the dynamical behaviors of cellular automata rule 37 are investigated from the viewpoint of symbolic dynamics in the bi-infinite sequence space. It is shown that rule 37, a member of Chua's period-2 rules and Wolfram's class 11, defines two chaotic subsystems and exhibits very rich and complicated dynamics; that is, rule 37 is topologically mixing on each subsystem and possesses the positive topological entropy. Meanwhile, the basin tree diagrams of rule 37 are explored for some finite length of binary strings, which reveal its Bernoulli-shift characteristics. It is interesting to find the collisions between propagating pixels of opposite colors in the space-time evolution of rule 37, which can also mimic Dirac's annihilation of matter and anti-matter. The method presented in this work is also applicable to studying the dynamics of other rules, especially the 112 Bernoulli-shift rules of the elementary cellular automata.

Jan Schoone,Joan Daemen

DOI: https://doi.org/10.1007/s10623-024-01395-w

IF: 1.4

2024-04-11

Designs Codes and Cryptography

Abstract:The Boolean map defined by (where ) is used in various permutations that are part of cryptographic schemes, e.g., Keccak -f (the SHA-3-permutation), ASCON (the winner of the NIST Lightweight competition), Xoodoo, Rasta and Subterranean (2.0). In this paper, we study various algebraic properties of this map. We consider (through vectorial isomorphism) as a univariate polynomial. We show that it is a power function if and only if . We furthermore compute bounds on the sparsity and degree of these univariate polynomials, and the number of different univariate representations. Secondly, we compute the number of monomials of given degree in the inverse of (if it exists). This number coincides with binomial coefficients. Lastly, we consider as a polynomial map, to study whether the same rule ( ) gives a bijection on field extensions of . We show that this is not the case for extensions whose degree is divisible by two or three. Based on these results, we conjecture that this rule does not give a bijection on any extension field of .

mathematics, applied,computer science, theory & methods

Arnab Roy,Matthias Johann Steiner

DOI: https://doi.org/10.48550/arXiv.2204.01802

2023-05-28

Abstract:In recent years a new class of symmetric-key primitives over $\mathbb{F}_p$ that are essential to Multi-Party Computation and Zero-Knowledge Proofs based protocols have emerged. Towards improving the efficiency of such primitives, a number of new block ciphers and hash functions over $\mathbb{F}_p$ were proposed. These new primitives also showed that following alternative design strategies to the classical Substitution-Permutation Network (SPN) and Feistel Networks leads to more efficient cipher and hash function designs over $\mathbb{F}_p$ specifically for large odd primes $p$. In view of these efforts, in this work we build an \emph{algebraic framework} that allows the systematic exploration of viable and efficient design strategies for constructing symmetric-key (iterative) permutations over $\mathbb{F}_p$. We first identify iterative polynomial dynamical systems over finite fields as the central building block of almost all block cipher design strategies. We propose a generalized triangular polynomial dynamical system (GTDS), and based on the GTDS we provide a generic definition of an iterative (keyed) permutation over $\mathbb{F}_p^n$. Our GTDS-based generic definition is able to describe the three most well-known design strategies, namely SPNs, Feistel networks and Lai--Massey. Consequently, the block ciphers that are constructed following these design strategies can also be instantiated from our generic definition. Moreover, we find that the recently proposed \texttt{Griffin} design, which neither follows the Feistel nor the SPN design, can be described using the generic GTDS-based definition. We also show that a new generalized Lai--Massey construction can be instantiated from the GTDS-based definition. We further provide generic analysis of the GTDS including an upper bound on the differential uniformity and the correlation.

Cryptography and Security

Amparo Fúster-Sabater

DOI: https://doi.org/10.48550/arXiv.1005.3224

2010-05-18

Abstract:A wide family of nonlinear sequence generators, the so-called clock-controlled shrinking generators, has been analyzed and identified with a subset of linear cellular automata. The algorithm that converts the given generator into a linear model based on automata is very simple and can be applied in a range of practical interest. Due to the linearity of these automata as well as the characteristics of this class of generators, a cryptanalytic approach can be proposed. Linear cellular structures easily model keystream generators with application in stream cipher cryptography.

Cryptography and Security,Discrete Mathematics

Joan Daemen,Daniël Kuijsters,Silvia Mella,Denise Verbakel

DOI: https://doi.org/10.1007/s12095-024-00711-4

2024-04-28

Cryptography and Communications

Abstract:Many modern cryptographic primitives for hashing and (authenticated) encryption make use of constructions that are instantiated with an iterated cryptographic permutation that operates on a fixed-width state consisting of an array of bits. Often, such permutations are the repeated application of a relatively simple round function consisting of a linear layer and a non-linear layer. These constructions do not require that the underlying function is a permutation and they can plausibly be based on a non-invertible transformation. Recently, Grassi proposed the use of non-invertible mappings operating on arrays of digits that are elements of a finite field of odd characteristic for so-called MPC-/FHE-/ZK-friendly symmetric cryptographic primitives. In this work, we consider a mapping that we call that has a simple expression and is based on squaring. We discuss, for the first time, the differential and linear propagation properties of and observe that these follow the same rules up to a relabeling of the digits. This is an intriguing property that, as far as we know, only exists for and the binary mapping that is used in the cryptographic permutation Xoodoo . Moreover, we study the implications of its non-invertibility on differentials with zero output difference and on biases at the output of the mapping and show that they are as small as they can possibly be.

computer science, theory & methods,mathematics, applied

Subroto, Robert Christian

DOI: https://doi.org/10.1007/s10623-024-01476-w

IF: 1.4

2024-08-23

Designs Codes and Cryptography

Abstract:Circulant Column Parity Mixers (CCPMs) are a particular type of linear maps, used as the mixing layer in permutation-based cryptographic primitives like Keccak - f (SHA3) and Xoodoo . Although being successfully applied, not much is known regarding their algebraic properties. They are limited to invertibility of CCPMs, and that the set of invertible CCPMs forms a group. A possible explanation is due to the complexity of describing CCPMs in terms of linear algebra. In this paper, we introduce a new approach to studying CCPMs using module theory from commutative algebra. We show that many interesting algebraic properties can be deduced using this approach, and that known results regarding CCPMs resurface as trivial consequences of module theoretic concepts. We also show how this approach can be used to study the linear layer of Xoodoo , and other linear maps with a similar structure which we call DCD-compositions. Using this approach, we prove that every DCD-composition where the underlying vector space with the same dimension as that of Xoodoo has a low order. This provides a solid mathematical explanation for the low order of the linear layer of Xoodoo , which equals 32. We design a DCD-composition using this module-theoretic approach, but with a higher order using a different dimension.

mathematics, applied,computer science, theory & methods

D.J.W. Simpson

DOI: https://doi.org/10.1016/j.physd.2024.134142

IF: 3.751

2024-03-23

Physica D Nonlinear Phenomena

Abstract:Piecewise-smooth maps are used as discrete-time models of dynamical systems whose evolution is governed by different equations under different conditions (e.g. switched control systems). By assigning a symbol to each region of phase space where the map is smooth, any period- p solution of the map can be associated to an itinerary of p symbols. As parameters of the map are varied, changes to this itinerary occur at border-collision bifurcations (BCBs) where one point of the periodic solution collides with a region boundary. It is well known that BCBs conform broadly to two cases: persistence , where the symbolic itinerary of a periodic solution changes by one symbol, and a nonsmooth-fold , where two solutions differing by one symbol collide and annihilate. This paper derives new properties of periodic solutions of piecewise-linear continuous maps on Rn to show that under mild conditions BCBs of mode-locked solutions on invariant circles must be nonsmooth-folds. This explains why Arnold tongues of piecewise-linear maps exhibit a sausage-string structure whereby changes to symbolic itineraries occur at codimension-two pinch points instead of codimension-one persistence-type BCBs. But the main result is based on the combinatorical properties of the itineraries, so the impossibility of persistence-type BCBs also holds when the periodic solution is unstable or there is no invariant circle.

mathematics, applied,physics, mathematical, multidisciplinary, fluids & plasmas

Qiuyan Wang,Yupeng Jiang,Dongdai Lin

DOI: https://doi.org/10.1016/j.jco.2015.01.001

IF: 1.333

2015-01-01

Journal of Complexity

Abstract:Periodic sequences over finite fields have been used as key streams in private-key cryptosystems since the 1950s. Such periodic sequences should have a series of cryptographic properties in order to resist many attack methods. The binary generalized cyclotomic periodic sequences, constructed by the cyclotomic classes over finite fields, have good pseudo-random properties and correlation properties. In this paper, the linear complexity and minimal polynomials of some generalized cyclotomic sequences over GF( q ) have been determined where q = p m and p is an odd prime. Results show that these sequences have high linear complexity over GF( q ) for a large part of odd prime power q , which means they can resist the linear attack method.

Victor Yodaiken

DOI: https://doi.org/10.1145/3633786

2023-12-16

Abstract:The behavior and architecture of large scale discrete state systems found in computer software and hardware can be specified and analyzed using a particular class of primitive recursive functions. This paper begins with an illustration of the utility of the method via a number of small examples and then via longer specification and verification of the Paxos distributed consensus algorithm. The sequence maps are then shown to provide an alternative representation of deterministic state machines and algebraic products of state machines. Distributed and composite systems, parallel and concurrent computation, and real-time behavior can all be specified naturally with these methods - which require neither extensions to the classical state machine model nor any axiomatic methods or other techniques from formal methods. Compared to state diagrams or tables or the standard set-tuple-transition-maps, sequence maps are more concise and better suited to describing the behavior and compositional architecture of computer systems. Staying strictly within the boundaries of classical deterministic state machines anchors the methods to the algebraic structures of automata and makes the specifications faithful to engineering practice.

Formal Languages and Automata Theory,Distributed, Parallel, and Cluster Computing

Amparo Fuster-Sabater,Pino Caballero-Gil

DOI: https://doi.org/10.1007/s10440-006-9041-6

2010-05-11

Abstract:In this work, pseudorandom sequence generators based on finite fields have been analyzed from the point of view of their cryptographic application. In fact, a class of nonlinear sequence generators has been modelled in terms of linear cellular automata. The algorithm that converts the given generator into a linear model based on automata is very simple and is based on the concatenation of a basic structure. Once the generator has been linearized, a cryptanalytic attack that exploits the weaknesses of such a model has been developed. Linear cellular structures easily model sequence generators with application in stream cipher cryptography.

Cryptography and Security,Discrete Mathematics

Xie Chen,Arpit Dua,Michael Hermele,David T. Stephen,Nathanan Tantivasadakarn,Robijn Vanhove,Jing-Yu Zhao

DOI: https://doi.org/10.1103/PhysRevB.109.075116

2023-07-04

Abstract:Finite-depth quantum circuits preserve the long-range entanglement structure in quantum states and map between states within a gapped phase. To map between states of different gapped phases, we can use Sequential Quantum Circuits which apply unitary transformations to local patches, strips, or other sub-regions of a system in a sequential way. The sequential structure of the circuit on the one hand preserves entanglement area law and hence the gapped-ness of the quantum states. On the other hand, the circuit has generically a linear depth, hence it is capable of changing the long-range correlation and entanglement of quantum states and the phase they belong to. In this paper, we discuss systematically the definition, basic properties, and prototypical examples of sequential quantum circuits that map product states to GHZ states, symmetry-protected topological states, intrinsic topological states, and fracton states. We discuss the physical interpretation of the power of the circuits through connection to condensation, Kramers-Wannier duality, and the notion of foliation for fracton phases.

Strongly Correlated Electrons,Quantum Physics

Ming Li,Dongdai Lin

DOI: https://doi.org/10.1109/tit.2017.2787742

IF: 2.5

2018-01-01

IEEE Transactions on Information Theory

Abstract:We study the problem of constructing De Bruijn sequences by joining cycles of linear feedback shift registers (LFSRs) with reducible characteristic polynomials. The main difficulty for joining cycles is to find the location of conjugate pairs between cycles, and the distribution of conjugate pairs in cycles is defined to be adjacency graphs. Let l(x) be a characteristic polynomial, and l(x) = l(1)(x) l(2)(x) . . . l(r) (x) be a decomposition of l(x) into pairwise co-prime factors. First, we show a connection between the adjacency graph of FSR(l(x)) and the association graphs of FSR(l(i)(x)), 1 <= i <= r. By this connection, the problem of determining the adjacency graph of FSR(l(x)) is decomposed to the problem of determining the association graphs of FSR(l(i)(x)), 1 <= i <= r, which is much easier to handle. Then, we study the association graphs of LFSRs with irreducible characteristic polynomials and give a relationship between these association graphs and the cyclotomic numbers over finite fields. At last, as an application of these results, we explicitly determine the adjacency graphs of some LFSRs and show that our results cover the previous ones.

Kazuyoshi Tsuchiya,Chiaki Ogawa,Yasuyuki Nogami,Satoshi Uehara

DOI: https://doi.org/10.1587/transfun.E101.A.2382

2018-09-12

Abstract:Pseudorandom number generators are required to generate pseudorandom numbers which have good statistical properties as well as unpredictability in cryptography. An m-sequence is a linear feedback shift register sequence with maximal period over a finite field. M-sequences have good statistical properties, however we must nonlinearize m-sequences for cryptographic purposes. A geometric sequence is a sequence given by applying a nonlinear feedforward function to an m-sequence. Nogami, Tada and Uehara proposed a geometric sequence whose nonlinear feedforward function is given by the Legendre symbol, and showed the period, periodic autocorrelation and linear complexity of the sequence. Furthermore, Nogami et al. proposed a generalization of the sequence, and showed the period and periodic autocorrelation. In this paper, we first investigate linear complexity of the geometric sequences. In the case that the Chan--Games formula which describes linear complexity of geometric sequences does not hold, we show the new formula by considering the sequence of complement numbers, Hasse derivative and cyclotomic classes. Under some conditions, we can ensure that the geometric sequences have a large linear complexity from the results on linear complexity of Sidel'nikov sequences. The geometric sequences have a long period and large linear complexity under some conditions, however they do not have the balance property. In order to construct sequences that have the balance property, we propose interleaved sequences of the geometric sequence and its complement. Furthermore, we show the periodic autocorrelation and linear complexity of the proposed sequences. The proposed sequences have the balance property, and have a large linear complexity if the geometric sequences have a large one.

Information Theory

Bishal Deb,Alan D. Sokal

2024-09-03

Abstract:A permutation is said to be cycle-alternating if it has no cycle double rises, cycle double falls or fixed points; thus each index $i$ is either a cycle valley ($\sigma^{-1}(i)>i<\sigma(i)$) or a cycle peak ($\sigma^{-1}(i)<i>\sigma(i)$). We find Stieltjes-type continued fractions for some multivariate polynomials that enumerate cycle-alternating permutations with respect to a large (sometimes infinite) number of simultaneous statistics that measure cycle status, record status, crossings and nestings along with the parity of the indices. Our continued fractions are specializations of more general continued fractions of Sokal and Zeng. We then introduce alternating Laguerre digraphs, which are generalization of cycle-alternating permutations, and find exponential generating functions for some polynomials enumerating them. We interpret the Stieltjes--Rogers and Jacobi--Rogers matrices associated to some of our continued fractions in terms of alternating Laguerre digraphs.

Combinatorics

Gil Alon,Gady Kozma

DOI: https://doi.org/10.1215/00127094-2266018

2012-05-26

Abstract:We examine the number of cycles of length k in a permutation, as a function on the symmetric group. We write it explicitly as a combination of characters of irreducible representations. This allows to study formation of long cycles in the interchange process, including a precise formula for the probability that the permutation is one long cycle at a given time t, and estimates for the cases of shorter cycles.

Probability,Representation Theory

Xiao-Juan Wang,Tian Tian,Wen-Feng Qi

DOI: https://doi.org/10.1007/s12095-024-00694-2

2024-01-19

Cryptography and Communications

Abstract:Recently nonlinear feedback shift registers (NFSRs) have frequently been used as basic building blocks for stream ciphers. A major problem concerning NFSRs is to construct NFSRs with large periods. In this paper, a new NFSR structure whose period could be theoretically analyzed is proposed and studied, called GL-S-NFSR. A GL-S-NFSR is a selective cascade connection of a primitive Galois LFSR into a standard Galois NFSR with a linear simplified feedback function, where standard Galois NFSRs with linear simplified feedback functions are very useful in stream ciphers, e.g., Trivium. It is proved that the periods of the output sequences of a GL-S-NFSR are lower bounded by the product of all the Zsigmondy primes of with a probability close to 1 under a weak assumption, and particularly, if n is a prime, then divides the periods of the output sequences with a high probability, where n is the stage of the Galois LFSR. Besides, it is also proved that there are several registers satisfying that the periods are multiples of Zsigmondy primes without any assumption. Note that the main building block of Kreyvium consists of a standard Galois NFSR with a linear simplified feedback function and two pure cycling registers (PCRs). Periodic results on GL-S-NFSR are applied to Kreyvium by modifying one PCR to a primitive LFSR and the modified building block of Kreyvium is called M-Kreyvium. It is shown that the sequences involved in M-Kreyvium could have large periods with high probabilities.

computer science, theory & methods,mathematics, applied

George Cosmin Stănică,Petre Anghelescu

DOI: https://doi.org/10.3390/math11061481

IF: 2.4

2023-03-18

Mathematics

Abstract:The theory and application of cellular automata (CA) for a stream cipher-based encryption principle are presented in this study. Certain fundamental transformations are developed based on CA theory regarding decentralized computation for modeling different system's behavior. The changes governing state transitions rely on simple evolution rules, which can easily be translated into functions using logic operators. A class of linear hybrid cellular automata (LHCA) based on rules 90 and 150 is used to implement these functions. Symmetric key systems theory is the foundation of the suggested algorithm. The algorithm functions use the proprieties provided by the LHCA evolution in order to convert plain text into cipher text and vice versa, in each case starting from the same initial state of the system and performing the same number of steps for each operation. Cellular automata's parallel information processing property, in addition to their regular and dynamical structure, makes hardware implementation of such schemes best suited for VLSI implementation. Testing of the proposed algorithm was performed by developing both software and hardware solutions. Hardware implementation of the presented cryptosystem was developed using VHDL hardware description language and a FPGA device (XILINX Spartan3E XC3S500E). Design and software simulations have been carried out using the C# programming language.

mathematics

Chun Guo,Lei Wang,Dongdai Lin

DOI: https://doi.org/10.1007/978-3-031-30634-1_14

2023-01-01

Abstract:Virtually all modern blockciphers are iterated. In this paper, we ask: to construct a secure iterated blockcipher “non-trivially”, how many calls to random functions and permutations are necessary? When security means indistinguishability from a random permutation, optimality is achieved by the Even-Mansour scheme using 1 call to a public permutation. We seek for the arguably strongest security indifferentiability from an ideal cipher, a notion introduced by Maurer et al. (TCC 2004) and popularized by Coron et al. (JoC, 2014). We provide the first generic negative result/lower bounds: when the key is not too short, no iterated blockcipher making 3 calls is (statistically) indifferentiable. This proves optimality for a 4-call positive result of Guo et al. (Eprint 2016). Furthermore, using 1 or 2 calls, even indifferentiable iterated blockciphers with polynomial $$\text {keyspace}$$ are impossible. To prove this, we develop an abstraction of idealized iterated blockciphers and establish various basic properties, and apply Extremal Graph Theory results to prove the existence of certain (generalized) non-random properties such as the boomerang and yoyo.

Sudhakar Sahoo,Pabitra Pal Choudhury,Mithun Chakraborty

DOI: https://doi.org/10.48550/arXiv.0808.1641

2008-08-12

Abstract:Global dynamics of a non-linear Cellular Automata is, in general irregular, asymmetric and unpredictable as opposed to that of a linear CA, which is highly systematic and tractable. In the past efforts have been made to systematize non-linear CA evolutions in the light of Boolean derivatives and Jacobian Matrices. In this paper two different efforts have been made: first we try to systematize non-linear CA evolution in the light of deviant states and non-deviant states. For all the non-deviant states the nearest linear rule matrix is applicable where as for the deviant states we have a set of other matrices. Second using algebraic manipulation, an efficient algorithm is proposed by which every Non-linear Boolean function can be characterized by a sequence of binary matrices.

Computational Complexity,Cellular Automata and Lattice Gases