This page uses content from Wikipedia and is licensed under CC BY-SA.

Truncated differential cryptanalysis

In cryptography, truncated differential cryptanalysis is a generalization of differential cryptanalysis, an attack against block ciphers. Lars Knudsen developed the technique in 1994. Whereas ordinary differential cryptanalysis analyzes the full difference between two texts, the truncated variant considers differences that are only partially determined. That is, the attack makes predictions of only some of the bits instead of the full block. This technique has been applied to SAFER, IDEA, Skipjack, E2, Twofish, Camellia, CRYPTON, and even the stream cipher Salsa20.


  • Lars Knudsen (1994). Truncated and Higher Order Differentials (PDF/PostScript). 2nd International Workshop on Fast Software Encryption (FSE 1994). Leuven: Springer-Verlag. pp. 196&ndash, 211. Retrieved 14 February 2007.
  • Lars Knudsen, Thomas Berson (1996). Truncated Differentials of SAFER (PDF/PostScript). 3rd International Workshop on Fast Software Encryption (FSE 1996). Cambridge: Springer-Verlag. pp. 15&ndash, 26. Retrieved 27 February 2007.
  • Johan Borst, Lars R. Knudsen, Vincent Rijmen (May 1997). Two Attacks on Reduced IDEA. Advances in Cryptology - EUROCRYPT '97. Konstanz: Springer-Verlag. pp. 1&ndash, 13. Archived from the original (gzipped PostScript) on 15 August 2000. Retrieved 8 March 2007.
  • Lars Knudsen, M.J.B. Robshaw, David Wagner (1999). Truncated Differentials and Skipjack (PostScript). Advances in Cryptology - CRYPTO '99. Santa Barbara, California: Springer-Verlag. pp. 165&ndash, 180. Retrieved 27 February 2007.
  • M. Matsui, T. Tokita (1999). Cryptanalysis of a Reduced Version of the Block Cipher E2. 6th International Workshop on Fast Software Encryption (FSE 1999). Rome: Springer-Verlag. pp. 71&ndash, 80. Archived from the original (PDF) on 2007-05-25. Retrieved 27 February 2007.
  • Shiho Moriai; Yiqun Lisa Yin (2000). "Cryptanalysis of Twofish (II)" (PDF). Retrieved 27 February 2007.
  • Crowley, Paul (2006). "Truncated differential cryptanalysis of five rounds of Salsa20". Retrieved 27 February 2007.