Jump to content

MARS (cipher)

From Wikipedia, the free encyclopedia
(Redirected from MARS (cryptography))
MARS
General
DesignersIBM
First published1998
CertificationAES finalist
Cipher detail
Key sizes128 to 448 bits
Block sizes128 bits
StructureType-3 Feistel network[1]
Rounds32

MARS is a block cipher that was IBM's submission to the Advanced Encryption Standard process. MARS was selected as an AES finalist in August 1999, after the AES2 conference in March 1999, where it was voted as the fifth and last finalist algorithm.

The MARS design team included Don Coppersmith, who had been involved in the creation of the previous Data Encryption Standard (DES) twenty years earlier. The project was specifically designed to resist future advances in cryptography by adopting a layered, compartmentalized approach.

IBM's official report stated that MARS and Serpent were the only two finalists to implement any form of safety net with regard to would-be advances in cryptographic mathematics. The Twofish team made a similar statement about its cipher.[2]

MARS has a 128-bit block size and a variable key size of between 128 and 448 bits (in 32-bit increments). Unlike most block ciphers, MARS has a heterogeneous structure: several rounds of a cryptographic core are "jacketed" by unkeyed mixing rounds, together with key whitening.

Security analysis

[edit]

Subkeys with long runs of ones or zeroes may lead to efficient attacks on MARS.[3] The two least significant bits of round keys used in multiplication are always set to the value 1. Thus, there are always two inputs that are unchanged through the multiplication process regardless of the subkey, and two others which have fixed output regardless of the subkey.[3]

A meet-in-the-middle attack published in 2004 by John Kelsey and Bruce Schneier can break 21 out of 32 rounds of MARS.[4]

Notes and references

[edit]
  1. ^ Hoang, Viet Tung; Rogaway, Phillip (2010). "On Generalized Feistel Networks". LNCS 6223. CRYPTO 2010. USA: Springer. pp. 613–630. doi:10.1007/978-3-642-14623-7_33.
  2. ^ NIST (2000), Report on the Development of the Advanced Encryption Standard (AES) (PDF), NIST
  3. ^ a b B. Preneel; et al. (2000), Comments by the NESSIE Project on the AES Finalists (PDF), NIST
  4. ^ MARS Attacks! Preliminary Cryptanalysis of Reduced-Round MARS Variants John Kelsey, Bruce Schneier, 2004
[edit]