CryptoMiniSat Switches-Optimization for Solving Cryptographic Instances

TL;DR

This paper empirically optimizes CryptoMiniSat 5 parameters to efficiently solve cryptographic CNF instances, achieving key recovery in under an hour without prior knowledge, demonstrating practical cryptanalysis capabilities.

Contribution

It systematically tunes CryptoMiniSat 5 for cryptographic problems, achieving unprecedented solving times and demonstrating potential for attacking larger cryptographic instances.

Findings

Key recovery in under an hour for specific cryptographic instances

Optimized solver configurations significantly reduce solving times

Demonstrated scalability potential for larger cryptographic problems

Abstract

Performing hundreds of test runs and a source-code analysis, we empirically identified improved parameter configurations for the CryptoMiniSat (CMS) 5 for solving cryptographic CNF instances originating from algebraic known-plaintext attacks on 3 rounds encryption of the Small AES-64 model cipher SR$(3, 4, 4, 4)$. We finally became able to reconstruct 64-bit long keys in under an hour real time which, to our knowledge, has never been achieved so far. Especially, not without any assumptions or previous knowledge of key-bits (for instance in the form of side-channels, as in \cite{Mohamed2012algebraicSCA}). A statistical analysis of the non-deterministic solver runtimes was carried out and command line parameter combinations were defined to yield best runtimes which ranged from under an hour to a few hours in median at the beginning. We proceeded using an Automatic Algorithm Configuration (AAC) tool to systematically extend the search for even better solver configurations with success to deliver even shorter solving times. In this work we elaborate on the systematics we followed to reach our results in a traceable and reproducible way. The ultimate focus of our investigations is to find out if CMS, when appropriately tuned, is indeed capable to attack even bigger and harder problems than the here solved ones. For the domain of cryptographic research, the duration of the solving time plays an inferior role as compared to the practical feasibility of finding a solution to the problem. The perspective scalability of the here presented results is the object of further investigations.