Abstract
The design of S-boxes with minimal mutual information between input and output subvectors (considered as random variables) is investigated. First, the conditional entropy of the value of a boolean function conditioned on its random arguments is expressed as a function of the Walsh transform of the function. The entropy profile of a function is then defined; it allows the comparison of functions with regard to their (conditional) entropies. An algorithm to construct functions with good entropy profiles is then presented. It consists of a stepwise improvement of randomly chosen functions and uses the relation between the Walsh transform and the (conditional) entropies of a function. The statistical independency of boolean functions is investigated in the final section.
Article PDF
Similar content being viewed by others
References
H. Feistel. Cryptography and computer privacy. Scientific American, 228(5): 15–23, May 1973.
R. Forré. The strict avalanche criterion: spectral properties of boolean functions and an extended definition. In Advances in Cryptology: Crypto '88 Proceedings, Springer-Verlag, Berlin, 1990, pp. 450–468.
J. B. Kam and G. I. Davida. Structured design of substitution-permutation encryption networks. IEEE Transactions on Computers, 28(10): 747–753, October 1979.
S. Lloyd. Counting functions satisfying a higher-order strict avalanche criterion. In Advances on Cryptology: Eurocrypt '89 Proceedings, Springer-Verlag, Berlin, to appear.
W. Meier and O. Staffelbach. Nonlinearity criteria for cryptographic functions. In Advances in Cryptology: Eurocrypt '89 Proceedings, Springer-Verlag, Berlin, to appear.
O. S. Rothaus. On bent functions. Journal of Combinatorial Theory (A), 20: 300–305, 1976.
T. Siegenthaler. Correlation-immunity of nonlinear combining functions for cryptographic applications. IEEE Transactions on Information Theory, 30: 776–780, October 1984.
R. C. Titsworth. Correlation Properties of Cyclic Sequences. Ph.D. thesis, California Institute of Technology, Pasadena, California, 1962.
A. F. Webster and S. E. Tavares. On the design of S-boxes. In Advances in Cryptology: Crypto '85 Proceedings, Springer-Verlag, Berlin, 1986.
G. Z. Xiao and J. L. Massey. A spectral chracterization of correlation-immune combining functions. IEEE Transactions on Information Theory, 34(3): 569–571, May 1988.
Author information
Authors and Affiliations
Rights and permissions
About this article
Cite this article
Forré, R. Methods and instruments for designing S-boxes. J. Cryptology 2, 115–130 (1990). https://doi.org/10.1007/BF00190799
Received:
Revised:
Issue Date:
DOI: https://doi.org/10.1007/BF00190799