Cryptanalysis of SIMON Variants with Connections

Javad Alizadeh, Hoda A. Alkhzaimi, Mohammad Reza Aref, Nasour Bagheri, Praveen Gauravaram, Abhishek Kumar, Martin Mehl Lauridsen, Somitra Kumar Sanadhya

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review


SIMON is a family of 10 lightweight block ciphers published by Beaulieu et al. from the United States National Security Agency (NSA). A cipher in this family with K-bit key and N-bit block is called SIMONN/K. We present several linear characteristics for reduced-round SIMON32/64 that can be used for a key-recovery attack and extend them further to attack other variants of SIMON. Moreover, we provide results of key recovery analysis using several impossible differential characteristics starting from 14 out of 32 rounds for SIMON32/64 to 22 out of 72 rounds for SIMON128/256. In some cases the presented observations do not directly yield an attack, but provide a basis for further analysis for the specific SIMON variant. Finally, we exploit a connection between linear and differential characteristics for SIMON to construct linear characteristics for different variants of reduced-round SIMON. Our attacks extend to all variants of SIMON covering more rounds compared to any known results using linear cryptanalysis. We present a key recovery attack against SIMON128/256 which covers 35 out of 72 rounds with data complexity 2123. We have implemented our attacks for small scale variants of SIMON and our experiments confirm the theoretical bias presented in this work.
Original languageEnglish
Title of host publicationProceedings of the 10th International Workshop on Radio Frequency Identification Security and Privacy Issues, RFIDSec 2014 : Revised Selected Papers
EditorsNitesh Saxena, Ahmad-Reza Sadeghi
Publication date2014
ISBN (Print)978-3-319-13065-1
ISBN (Electronic)78-3-319-13066-8
Publication statusPublished - 2014
Event10th International Workshop on RFID Security and Privacy (RFIDSec 2014) - Oxford, United Kingdom
Duration: 21 Jul 201423 Jul 2014
Conference number: 10


Workshop10th International Workshop on RFID Security and Privacy (RFIDSec 2014)
Country/TerritoryUnited Kingdom
Internet address
SeriesLecture Notes in Computer Science


Dive into the research topics of 'Cryptanalysis of SIMON Variants with Connections'. Together they form a unique fingerprint.

Cite this