IET Information Security (Jan 2022)

Cryptanalysis of a white‐box SM4 implementation based on collision attack

  • Rusi Wang,
  • Hua Guo,
  • Jiqiang Lu,
  • Jianwei Liu

DOI
https://doi.org/10.1049/ise2.12045
Journal volume & issue
Vol. 16, no. 1
pp. 18 – 27

Abstract

Read online

Abstract White‐box cryptography is to primarily protect the key of a cipher from being extracted in a white‐box scenario, where an adversary has full access to the execution environment of software implementation. Since the introduction of white‐box cryptography, a number of white‐box implementations of the Chinese SM4 block cipher standard have been proposed, and all of them have been attacked based on Billet et al.’s attack. In this study, we show that collision‐based attack can work more efficiently on Shi et al.’s white‐box SM4 implementation than the previously published attacks, by devising an attack with a time complexity of 223, significantly reducing the previously known time complexity of 249 to a very practical level. Our attack can also be similarly applied to some other white‐box SM4 implementations.

Keywords