Q (cipher) explained

Q
Designers:Leslie McBride
Publish Date:November 2000
Derived From:AES, Serpent
Key Size:128, 192, or 256 bits
Block Size:128 bits
Structure:Substitution–permutation network
Rounds:8 or 9
Cryptanalysis:A linear attack succeeds with 98.4% probability using 297 known plaintexts.

In cryptography, Q is a block cipher invented by Leslie McBride. It was submitted to the NESSIE project, but was not selected.

The algorithm uses a key size of 128, 192, or 256 bits. It operates on blocks of 128 bits using a substitution–permutation network structure. There are 8 rounds for a 128-bit key and 9 rounds for a longer key. Q uses S-boxes adapted from Rijndael (also known as AES) and Serpent. It combines the nonlinear operations from these ciphers, but leaves out all the linear transformations except the permutation.[1] Q also uses a constant derived from the golden ratio as a source of "nothing up my sleeve numbers".

Q is vulnerable to linear cryptanalysis; Keliher, Meijer, and Tavares have an attack that succeeds with 98.4% probability using 297 known plaintexts.[2]

References

  1. Eli Biham, Vladimir Furman, Michal Misztal, Vincent Rijmen. Differential Cryptanalysis of Q. 8th International Workshop on Fast Software Encryption (FSE 2001). 174 - 186. Springer-Verlag. 11 February 2001. Yokohama. 10.1007/3-540-45473-X_15. free.
  2. L. Keliher, H. Meijer, and S. Tavares. 12 September 2001. High probability linear hulls in Q. Proceedings of Second Open NESSIE Workshop. Surrey, England. 2018-09-13.

This article is licensed under the GNU Free Documentation License. It uses material from the Wikipedia article "Q (cipher)".

Except where otherwise indicated, Everything.Explained.Today is © Copyright 2009-2024, A B Cryer, All Rights Reserved. Cookie policy.