Self-Evaluation Report MULTI-S01 (revised for 2001 submittion)
Hitachi, Ltd.
Copyright 2000, 2001 Hitachi, Ltd. All Rights ReservedReserved.. 1
1. INTRODUCTION...... 3
2. DATA CONFIDENTIALITY AND DATA INTEGRITY...... 3
2.1. INTRODUCTION ...... 3 2.2. ENCRYPTION MODEL ...... 5 2.3. PERFECT CONFIDENTIALITY OF MULTI-S01 CIPHER ...... 6 2.4. INTEGRITY OF MULTI-S01 CIPHER ...... 7 2.4.1. Case 1: Alteration of Ciphertext of the Same Length ...... 8 2.4.2. Case 2: Alteration of Shorter Ciphertext...... 9 2.4.3. Case 3: Alteration of Longer Ciphertext ...... 9 3. THE SECURITY OF PSEUDORANDOM NUMBER GENERATOR PANAMA ...... 10
3.1. RANDOMNESS TEST ...... 11 3.1.1. FIPS 140-1Randomness Tests...... 11 3.1.2. Further Test for Long Sequences...... 11 3.2. CRYPTOGRAPHIC SECURITY...... 12 3.2.1. Non-linear properties of ρ ...... 13 3.2.2. Resistance property of Linear Cryptoanalysis...... 14 3.2.3. Attacks on reduced PANAMA ...... 15 4. IMPLEMENTATION ...... 16
4.1. SOFTWARE IMPLEMENTATION ...... 16 4.2. HARDWARE IMPLEMENTATION...... 17 4.2.1. Design of logic circuits ...... 17 4.2.2. Evaluation of Gate Size and Throughput ...... 23 5. REFERENCES...... 25
Copyright 2000, 2001 Hitachi, Ltd. All Rights ReservedReserved.. 2
1. Introduction This article summarizes the results of the research done to evaluate security of the MULTI-S01 encryption algorithm. MULTI-S01 uses the pseudorandom number generator (PRNG) PANAMA. Thus, the security of MULTI-S01 is based on that of PANAMA. In this article, we discuss three topics.
1. Security of MULTI-S01 with assumption of security by PANAMA; Data Confidentiality Data Integrity 2. Security of PANAMA PRNG; Empirical Randomness Test Cryptographic Security Evaluation 3. Implementation Evaluation (i.e., performance) Software Implementation Hardware Implementation These results show that MULTI-S01 is a secure and efficient encryption algorithm.
The latest information about MULTI-S01 is available at the following URL at any time: http://www.sdl.hitachi.co.jp/crypto/s01/index.html
2. Data Confidentiality and Data Integrity
2.1. Introduction In this section, we investigate the security of MULTI-S01, assuming the security of PANAMA. MULTI-S01 supplies two security fanctionalities as a symmetric key cipher.