Selected Areas in Cryptography: 17th International Workshop, SAC 2010, Waterloo, Ontario, Canada, August 12-13, 2010, Revised Selected Papers

Hash Functions I

Zero-Sum Distinguishers for Iterated Permutations and Application to KECCAK-f and Hamsi-256 Christina Boura Anne Canteaut 1

Attacks on Hash Functions Based on Generalized Feistel: Application to Reduced-Round Lesamnta and SHAvite-3₅₁₂ Charles Bouillaguet Orr Dunkelrman Gaëtan Leurent Pierre-Alain Fouque 18

The Differential Analysis of S-Functions Nicky Mouha Vesselin Velichkov Christophe De Cannière Bart Preneel 36

Stream Ciphers

Hill Climbing Algorithms and Trivium Julia Borghoff Lars R. Knudsen Krystian Matusiewicz 57

Discovery and Exploitation of New Biases in RC4 Pouyan Sepehrdad Serge Vaudenay Martin Vuagnoux 74

The Stafford Tavares Lecture

The Rise and Fall and Rise of Combinatorial Key Predistribution Keith M. Martin 92

Efficient Implementations

A Low-Area Yet Performant FPGA Implementation of Shabal Jérémie Detrey Pierrick Gaudry Karim Khalfallah 99

Implementation of Symmetric Algorithms on a Synthesizable 8-Bit Microcontroller Targeting Passive RFID Tags Thomas Plos Hannes Groβ Martin Feldhofer 114

Batch Computations Revisited: Combining Key Computations and Batch Verifications René Struik 130

Coding and Combinatorics

Wild McEliece Daniel J. Bernstein Tanja Lange Christiane Peters 143

Parallel-CFS: Strengthening the CFS McEliece-Based Signature Scheme Matthieu Finiasz 159

A Zero-Knowledge Identification Scheme Based on the q-ary Syndrome Decoding Problem Pierre-Louis Cayrel Pascal Véron Sidi Mohamed El Yousfi Alaoui 171

Optimal Covering Codes for Finding Near-Collisions Mario Lamberger Vincent Rijmen 187

Block Ciphers

Tweaking AES Ivica Nikolic 198

On the Diffusion of Generalized Feistel Structures Regarding Differential and Linear Cryptanalysis Kyoji Shibutani 211

A 3-Subset Meet-in-the-Middle Attack: Cryptanalysis of the Lightweight Block Cipher KTANTAN Andrey Bogdanov Christian Rechberger 229

Side Channel Attacks

Improving DPA by Peak Distribution Analysis Jing Pan Jasper G.J. van Woudenberg Jerry I. den Hartog Marc F. Witteman 241

Affine Masking against Higher-Order Side Channel Analysis Guillaume Fumaroli Ange Martinelli Emmanuel Prouff Matthieu Rivain 262

Invited Talk

Search on Encrypted Data in the Symmetric-Key Setting Alexandra Boldyreva 281

Mathematical Aspects

Preimages for the Tillich-Zémor Hash Function Christophe Petit Jean-Jacques Quisquater 282

One-Time Signatures and Chameleon Hash Functions Payman Mohassel 302

On the Minimum Communication Effort for Secure Group Key Exchange Frederik Armknecht Jun Furukawa 320

Hash Functions II

Deterministic Differential Properties of the Compression Function of BMW Jian Guo Søren S. Thomsen 338

Security Analysis of SIMD Charles Bouillaguet Pierre-Alain Fouque Gaëtan Leurent 351

Subspace Distinguisher for 5/8 Rounds of the ECHO-256 Hash Function Martin Schläffer 369

Cryptanalysis of Luffa v2 Components Dmitry Khovratovich María Naya-Plasencia Andrea Röck Martin Schläffer 388

Author Index 411