The Security of SIMON-like Ciphers Against Linear Cryptanalysis

In the present paper, we analyze the security of SIMON-like ciphers against linear cryptanalysis. First, an upper bound is derived on the squared correlation of SIMON-like round function. It is shown that the upper bound on the squared correlation of SIMON-like round function decreases with the Hamming weight of output mask increasing. Based on this, we derive an upper bound on the squared correlation of linear trails for SIMON and SIMECK, which is $2^{-2R+2}$ for any $R$-round linear trail. We also extend this upper bound to SIMON-like ciphers. Meanwhile, an automatic search algorithm is proposed, which can find the optimal linear trails in SIMON-like ciphers under the Markov assumption. With the proposed algorithm, we find the provably optimal linear trails for $12$, $16$, $19$, $28$ and $37$ rounds of SIMON$32/48/64/96/128$. To the best of our knowledge, it is the first time that the provably optimal linear trails for SIMON$64$, SIMON$96$ and SIMON$128$ are reported. The provably optimal linear trails for $13$, $19$ and $25$ rounds of SIMECK$32/48/64$ are also found respectively. Besides the optimal linear trails, we also find the $23$, $31$ and $41$-round linear hulls for SIMON$64/96/128$, and $13$, $21$ and $27$-round linear hulls for SIMECK$32/48/64$. As far as we know, these are the best linear hull distinguishers for SIMON and SIMECK so far. Compared with the approach based on SAT/SMT solvers in \cite{KolblLT15}, our search algorithm is more efficient and practical to evaluate the security against linear cryptanalysis in the design of SIMON-like ciphers

A new method for Searching Optimal Differential and Linear Trails in ARX Ciphers

In this paper, we propose an automatic tool to search for optimal differential and linear trails in ARX ciphers. It\u27s shown that a modulo addition can be divided into sequential small modulo additions with carry bit, which turns an ARX cipher into an S-box-like cipher. From this insight, we introduce the concepts of carry-bit-dependent difference distribution table (CDDT) and carry-bit-dependent linear approximation table (CLAT). Based on them, we give efficient methods to trace all possible output differences and linear masks of a big modulo addition, with returning their differential probabilities and linear correlations simultaneously. Then an adapted Matsui\u27s algorithm is introduced, which can find the optimal differential and linear trails in ARX ciphers. Besides, the superiority of our tool\u27s potency is also confirmed by experimental results for round-reduced versions of HIGHT and SPECK. More specifically, we find the optimal differential trails for up to 10 rounds of HIGHT, reported for the first time. We also find the optimal differential trails for 10, 12, 16, 8 and 8 rounds of SPECK32/48/64/96/128, and report the provably optimal differential trails for SPECK48 and SPECK64 for the first time. The optimal linear trails for up to 9 rounds of HIGHT are reported for the first time, and the optimal linear trails for 22, 13, 15, 9 and 9 rounds of SPECK32/48/64/96/128 are also found respectively. These results evaluate the security of HIGHT and SPECK against differential and linear cryptanalysis. Also, our tool is useful to estimate the security in the design of ARX ciphers

Evaluating the Security of Block Ciphers Against Zero-correlation Linear Attack in the Distinguishers Aspect

Zero-correlation linear attack is a powerful attack of block ciphers, the lower number of rounds (LNR) which no its distinguisher (named zero-correlation linear approximation, ZCLA) exists reflects the ability of a block cipher against the zero-correlation linear attack. However, due to the large search space, showing there are no ZCLAs exist for a given block cipher under a certain number of rounds is a very hard task. Thus, present works can only prove there no ZCLAs exist in a small search space, such as 1-bit/nibble/word input and output active ZCLAs, which still exist very large gaps to show no ZCLAs exist in the whole search space. In this paper, we propose the meet-in-the-middle method and double-collision method to show there no ZCLAs exist in the whole search space. The basic ideas of those two methods are very simple, but they work very effectively. As a result, we apply those two methods to AES, Midori64, and ARIA, and show that there no ZCLAs exist for $5$-round AES without the last Mix-Column layer, $7$-round Midori64 without the last Mix-Column layer, and $5$-round ARIA without the last linear layer. As far as we know, our method is the first automatic method that can be used to show there no ZCLAs exist in the whole search space, which can provide sufficient evidence to show the security of a block cipher against the zero-correlation linear attack in the distinguishers aspect, this feature is very useful for designing block ciphers

Acute Administration of n-3 Rich Triglyceride Emulsions Provides Cardioprotection in Murine Models after Ischemia-Reperfusion

Dietary n-3 fatty acids (FAs) may reduce cardiovascular disease risk. We questioned whether acute administration of n-3 rich triglyceride (TG) emulsions could preserve cardiac function and decrease injury after ischemia/reperfusion (I/R) insult. We used two different experimental models: in vivo, C57BL/6 mice were exposed to acute occlusion of the left anterior descending coronary artery (LAD), and ex-vivo, C57BL/6 murine hearts were perfused using Langendorff technique (LT). In the LAD model, mice treated with n-3 TG emulsion (1.5g/kg body weight), immediately after ischemia and 1h later during reperfusion, significantly reduced infarct size and maintained cardiac function (p<0.05). In the LT model, administration of n-3 TG emulsion (300mgTG/100ml) during reperfusion significantly improved functional recovery (p<0.05). In both models, lactate dehydrogenase (LDH) levels, as a marker of injury, were significantly reduced by n-3 TG emulsion. To investigate the mechanisms by which n-3 FAs protects hearts from I/R injury, we investigated changes in key pathways linked to cardioprotection. In the ex-vivo model, we showed that n-3 FAs increased phosphorylation of AKT and GSK3β proteins (p<0.05). Acute n-3 TG emulsion treatment also increased Bcl-2 protein level and reduced an autophagy marker, Beclin-1 (p<0.05). Additionally, cardioprotection by n-3 TG emulsion was linked to changes in PPARγ protein expression (p<0.05). Rosiglitazone and p-AKT inhibitor counteracted the positive effect of n-3 TG; GSK3β inhibitor plus n-3 TG significantly inhibited LDH release. We conclude that acute n-3 TG injection during reperfusion provides cardioprotection. This may prove to be a novel acute adjunctive reperfusion therapy after treating patients with myocardial infarction

Clinical Effects of Sacubitril/Valsartan Combined with Dapagliflozin in Patients with Diabetes and ST-segment Elevation Myocardial Infarction

Objectives: This study was aimed at observing the clinical effects of sacubitril/valsartan combined with dapagliflozin on cardiac function and ventricular remodeling in patients with type 2 diabetes and ST-segment elevation myocardial infarction (STEMI). Methods: Between May 2019 and May 2022, we retrospectively analyzed 57 patients with diabetes and STEMI receiving percutaneous coronary intervention: 32 patients receiving sacubitril/valsartan and dapagliflozin tablets comprised the observation group and 25 patients receiving angiotensin converting enzyme inhibition (ACEI) or angiotensin receptor blockers ARB) in combination with other hypoglycemic drugs comprised the control group. We compared the left ventricular end diastolic diameter (LVEDD), right ventricular end diastolic diameter (RVEDD), left ventricular ejection fraction (LVEF), N-terminal pro-B-type natriuretic peptide (NT-pro BNP), and noninvasive hemodynamic parameters at baseline and 3–6 months after treatment between the groups. Results: Before treatment, the parameters were similar between the observation group and control group. However, after 3−6 months of treatment, serum NT-pro BNP levels showed a greater decline in the observation group than the control group. Moreover, the LVEDD and LVEF improved more substantially in the observation group than the control group (P0.05). After treatment, in the observation group, the cardiac index (CI) and cardiac output (CO) were significantly higher, and the thoracic fluid conduction (TFC) and systemic vascular resistance index (SVRI) were significantly lower, than those in the control group (P<0.05). Conclusions: Sacubitril/valsartan combination with dapagliflozin exerted better effects than ACEI or ARB with other hypoglycemic drugs in improving cardiac function and ventricular remodeling in patients with diabetes and STEMI

Automatic Search Model for Related-Tweakey Impossible Differential Cryptanalysis

The design and analysis of dedicated tweakable block ciphers constitute a dynamic and relatively recent research field in symmetric cryptanalysis. The assessment of security in the related-tweakey model is of utmost importance owing to the existence of a public tweak. This paper proposes an automatic search model for identifying related-tweakey impossible differentials based on the propagation of states under specific constraints, which is inspired by the research of Hu et al. in ASIACRYPT 2020. Our model is universally applicable to block ciphers, but its search efficiency may be limited in some cases. To address this issue, we introduce the Locality Constraint Analysis (LCA) technique to impossible differential cryptanalysis and propose a generalized automatic search model. Technically, we transform our models into Satisfiability Modulo Theories (SMT) problems and solve them using the STP solver. We have applied our tools to several tweakable block ciphers, such as Joltik-BC, SKINNY, QARMA, and CRAFT, to evaluate their effectiveness and practicality. Specifically, we have discovered 7-round related-tweakey impossible differentials for Joltik-BC-192, and 12-round related-tweak impossible differentials, as well as 15-round related-tweakey impossible differentials for CRAFT for the first time. Based on the search results, we demonstrate that the LCA technique can be effectively performed when searching and determining the contradictory positions for the distinguisher with long trails or ciphers with large sizes in impossible differential cryptanalysis

Performance of next-generation sequencing for diagnosis of blood infections by Klebsiella pneumoniae

ObjectiveKlebsiella pneumoniae (Kp) bloodstream infections (BSI) can be a life-threatening opportunistic infection. We aimed to evaluate the diagnostic accuracy of metagenomic next-generation sequencing (mNGS) for Kp BSI.MethodsWe retrospectively analyzed 72 patients suspected with bloodstream infection and mNGS Kp positive in peripheral blood, who were hospitalized in our hospital from January 2022 to January 2023. Clinical data and laboratory parameters were collected. All patients had blood drawn and other samples for blood mNGS, blood cultures (BC) and other cultures (OC). The accuracy of mNGS results was analyzed according to infection site, clinical indicators, therapeutic effect and routine culture results. The detection of pathogenic microorganisms by blood mNGS and routine culture was compared.ResultsAmong 72 infection patients, 29 cases (40.28%) were BC positive, 43 cases (59.72%) were other culture (OC) positive, 16 cases (22.22%) were both BC and OC positive, 56 cases were positive for both mNGS and routine culture. Among the 56 double-positive cases, mNGS and conventional cultures were completely consistent in 27 cases, partially consistent in 15 cases, and completely inconsistent in 14 cases. Using the clinical diagnosis as the reference standard, There were 51 cases consistent with the results of mNGS with Kp BSI, the clinical consistency was 70.83% (51/72). The coincidence rate of mNGS and clinical diagnosis was higher than that of BC (54.17%, 39/72), indicating a statistically significant difference between the two methods (P&lt;0.01).ConclusionsCurrent evidence indicates that mNGS exhibits excellent accuracy for the diagnosis of Kp BSI. Although it cannot replace blood culture detection technology, it can be used as a supplement to provide stronger diagnostic capabilities for BSI and optimize treatment