Section:
Software
MitMTool
Participants :
Patrick Derbez, Jérémy Jean.
The purpose of MitMTool is to look for guess-and-determine and meet-in-the-middle attacks on AES and AES-based constructions.
This tool allows us to improve known attacks on round-reduced versions of AES, on the LEX stream-cipher on the PELICAN Message
Authentication Code and on fault attack on AES. Basically, it solves the problem to find all the solutions of a linear system
of equations on the variables and where is an inert function. The tool allows to compute the complexity of some good
attack as well as the C code of the attack. We verify that the complexity estimates are accurate using experiments.
We also use it to find one solution of the system for chosen-key differential attacks.
There are mainly two tools: the first one only looks for guess-and-determine attack and tries to propagate
some knowledge and guesses value when it cannot find automatically the value of some variable.
The second tool uses the technique of the first tool and more advanced technique to take into account
attacks with memory that use the meet-in-the-middle attack.
Previous | 
Home