@inproceedings{
    her09fse,
    editor = "Dunkelman, Orr",
    author = "Hermelin, Miia and Cho, Joo Yeon and Nyberg, Kaisa",
    publisher = "Springer",
    optmonth = "",
    responsibleauthor = "Hermelin, Miia",
    title = "Multidimensional {E}xtension of {M}atsui's {A}lgorithm 2",
    series = "Lecture Notes in Computer Science",
    booktitle = "Fast Software Encryption 2009",
    optaddress = "",
    optnote = "",
    corerank = "B",
    abstract = "Matsui's one-dimensional Alg. 2 can be used in recovering bits of the last round key of a block cipher. In this paper a truly multidimensional extension of Alg. 2 based on established statistical theory is presented. Two possible methods, an optimal method based on the log-likelihood ratio and a method based on a goodness-of-fit test are compared in theory and by practical experiments on reduced round Serpent. The theory of advantage by Sel\c cuk is generalised in multiple dimensions and the advantages and data, time and memory complexities for both methods are derived.",
    volume = "5665",
    optannote = "",
    flags = "public CRYPTO01 CRYPTO",
    optorganization = "",
    year = "2009",
    keywords = "Matsui's algorithm 2, multidimensional, linear cryptanalysis, key ranking, ranking statistic, advantage, goodness-of-fit, log-likelihood ratio",
    impactfactor = "D3",
    pages = "209--227"
}