Proving the Security of AES Substitution-Permutation Network

  title={Proving the Security of AES Substitution-Permutation Network},
  author={Thomas Baign{\`e}res and Serge Vaudenay},
  booktitle={Selected Areas in Cryptography},
In this paper we study the substitution-permutation network (SPN) on which AES is based. We introduce AES, a SPN identical to AES except that fixed S-boxes are replaced by random and independent permutations. We prove that this construction resists linear and differential cryptanalysis with 4 inner rounds only, despite the huge cumulative effect of multipath characteristics that is induced by the symmetries of AES. We show that the DP and LP terms both tend towards 1/(2−1) very fast when the… CONTINUE READING