TY - JOUR AU - Leander, Gregor AU - Tezcan, Cihangir AU - Wiemer, Friedrich PY - 2018/03/01 Y2 - 2024/03/28 TI - Searching for Subspace Trails and Truncated Differentials JF - IACR Transactions on Symmetric Cryptology JA - ToSC VL - 2018 IS - 1 SE - Articles DO - 10.13154/tosc.v2018.i1.74-100 UR - https://tosc.iacr.org/index.php/ToSC/article/view/845 SP - 74-100 AB - Grassi et al. [Gra+16] introduced subspace trail cryptanalysis as a generalization of invariant subspaces and used it to give the first five round distinguisher for Aes. While it is a generic method, up to now it was only applied to the Aes and Prince. One problem for a broad adoption of the attack is a missing generic analysis algorithm. In this work we provide efficient and generic algorithms that allow to compute the provably best subspace trails for any substitution permutation cipher. ER -