In [2]:
def conjugate(S, G, f):
    conjugated_generators = list(map(lambda x: f^-1*x*f,G.minimal_generating_set()))
    return S.subgroup(gens= conjugated_generators)

def build_translations_group(sorted_shifts,sorted_field_elements,S):
    translations = []
    translations_dict = {}
    for t in sorted_shifts:
        translation_by_t = S([t + item for item in sorted_field_elements])
        translations.append(translation_by_t)
        translations_dict[t] = translation_by_t
    return (S.subgroup(translations), translations_dict)


def build_inversion(sorted_field_elements,S, F):
    return S([x^-1 if x != F(0) else F(0) for x in sorted_field_elements])
def build_dilon(sorted_field_elements,S, F):
    dilon_map = [0, 54, 48, 13,15,18,53,35,25,63,45,52,3,20,41,33,59,36,2,34,10,8,57,37,60,19,42,14,50,26,58,24,39,27,21,17,16,29,1,62,47,40,51,56,7,43,44,38,31,11,4,28,61,46,5,49,9,6,23,32,30,12,55,22]
    return S([F.fetch_int(x) for x in dilon_map])
def build_good_sbox():
    GOOD_SBOX = (0x6e, 0xe8, 0x5f, 0xa8, 0x32, 0x24, 0xa7, 0x0e, 0x1d, 0x64, 0x87, 0x14, 0xc3, 0x6f, 0x95, 0x92,
        0xfb, 0x4c, 0x82, 0x99, 0x3d, 0x19, 0xac, 0x45, 0x9f, 0xfe, 0xde, 0x15, 0xb9, 0xf9, 0xe2, 0x8a,
        0xec, 0xf5, 0x0d, 0xea, 0x3a, 0x77, 0x47, 0x12, 0x11, 0x01, 0x97, 0xc5, 0x13, 0x10, 0x81, 0x9d,
        0xed, 0x75, 0x88, 0x68, 0xfa, 0xa4, 0xc0, 0xca, 0xba, 0xb2, 0x3b, 0x61, 0xae, 0x0a, 0x6c, 0x65,
        0xd5, 0x42, 0x5d, 0xdc, 0xf2, 0x85, 0x9b, 0xa6, 0x67, 0x50, 0x63, 0x91, 0xc7, 0x34, 0x80, 0xd7,
        0x96, 0x1b, 0x8e, 0x5e, 0x94, 0x2f, 0xb1, 0xad, 0xa0, 0x93, 0x2c, 0x52, 0xd0, 0x29, 0x07, 0xc8,
        0x8d, 0x7f, 0x49, 0x6b, 0x36, 0x2e, 0xd9, 0xe0, 0x37, 0xcd, 0x83, 0xaf, 0x6d, 0x57, 0xce, 0xb3,
        0x5c, 0xc6, 0x60, 0xd8, 0x3f, 0xe4, 0x4f, 0xab, 0x56, 0xa1, 0x72, 0xe7, 0x69, 0xf1, 0xdd, 0x9c,
        0x84, 0x90, 0x25, 0x4b, 0x76, 0x5a, 0x6a, 0xda, 0xf0, 0xe5, 0x53, 0x5b, 0x7e, 0x2a, 0x2b, 0xd3,
        0x35, 0xa3, 0x1c, 0xa2, 0x28, 0x9e, 0x30, 0xa9, 0xb4, 0x06, 0x0b, 0xef, 0xaa, 0x43, 0xe9, 0x7d,
        0xe1, 0x3e, 0x31, 0x44, 0x54, 0xdb, 0x79, 0xc9, 0x41, 0xfc, 0xf7, 0x66, 0x7a, 0xb7, 0x51, 0x38,
        0xdf, 0x62, 0x40, 0xbb, 0x26, 0x09, 0xf3, 0xcf, 0xd2, 0x1a, 0x20, 0x0c, 0x04, 0x16, 0x33, 0x22,
        0x4e, 0xa5, 0x58, 0x9a, 0xd6, 0x02, 0xe6, 0xcb, 0xbe, 0xeb, 0x86, 0x7b, 0xbd, 0xd1, 0x03, 0xf6,
        0xee, 0x8f, 0x0f, 0x55, 0x8b, 0x4a, 0x7c, 0x23, 0x2d, 0xb6, 0x1f, 0xc2, 0x17, 0xbf, 0x73, 0x08,
        0xcc, 0x70, 0x1e, 0x59, 0x46, 0xe3, 0x27, 0xff, 0x78, 0xb8, 0x18, 0x21, 0xd4, 0xbc, 0x98, 0xf4,
        0xc1, 0xc4, 0x74, 0x39, 0x89, 0xf8, 0xfd, 0x48, 0x71, 0x4d, 0xb0, 0x3c, 0x00, 0x8c, 0xb5, 0x05,)
    return S([F.from_integer(x) for x in GOOD_SBOX])

def build_kuznechik():
    SBOX = (252, 238, 221, 17, 207, 110, 49, 22, 251, 196, 250, 218, 35, 197, 4, 77, 233,
        119, 240, 219, 147, 46, 153, 186, 23, 54, 241, 187, 20, 205, 95, 193, 249, 24, 101,
        90, 226, 92, 239, 33, 129, 28, 60, 66, 139, 1, 142, 79, 5, 132, 2, 174, 227, 106, 143,
        160, 6, 11, 237, 152, 127, 212, 211, 31, 235, 52, 44, 81, 234, 200, 72, 171, 242, 42,
        104, 162, 253, 58, 206, 204, 181, 112, 14, 86, 8, 12, 118, 18, 191, 114, 19, 71, 156,
        183, 93, 135, 21, 161, 150, 41, 16, 123, 154, 199, 243, 145, 120, 111, 157, 158, 178,
        177, 50, 117, 25, 61, 255, 53, 138, 126, 109, 84, 198, 128, 195, 189, 13, 87, 223,
        245, 36, 169, 62, 168, 67, 201, 215, 121, 214, 246, 124, 34, 185, 3, 224, 15, 236,
        222, 122, 148, 176, 188, 220, 232, 40, 80, 78, 51, 10, 74, 167, 151, 96, 115, 30, 0,
        98, 68, 26, 184, 56, 130, 100, 159, 38, 65, 173, 69, 70, 146, 39, 94, 85, 47, 140, 163,
        165, 125, 105, 213, 149, 59, 7, 88, 179, 64, 134, 172, 29, 247, 48, 55, 107, 228, 136,
        217, 231, 137, 225, 27, 131, 73, 76, 63, 248, 254, 141, 83, 170, 144, 202, 216, 133,
        97, 32, 113, 103, 164, 45, 43, 9, 91, 203, 155, 37, 208, 190, 229, 108, 82, 89, 166,
        116, 210, 230, 244, 180, 192, 209, 102, 175, 194, 57, 75, 99, 182)
    return S([F.from_integer(x) for x in SBOX])


def is_APN(permutation, sorted_field_elements, field):
    return differential_uniformity(permutation, sorted_field_elements, field) == 2

def differential_uniformity(permutation, field):
    max_d = 0
    for a in field:
        if a == field.zero():
            continue
        output_differences = defaultdict(lambda: 0)
        current_max = 0
        for x in field:
            xa = x+a
            output_differences[permutation(xa)+permutation(x)]+=1
            if current_max < output_differences[permutation(xa)+permutation(x)]:
                current_max = output_differences[permutation(xa)+permutation(x)]
        if current_max > max_d:
            max_d = current_max
    return max_d

def build_DDT(permutation, sorted_field_elements, field):
    ddt = {}
    for a in sorted_field_elements:
        ddt[a] = {}
        for b in sorted_field_elements:
            if a == field(0):
                ddt[a][b] = 0
            else:
                ddt[a][b] = 0
                for x in sorted_field_elements:
                    if permutation(x+a)+permutation(x)+b == F(0):
                        ddt[a][b] = ddt[a][b] + 1
    return ddt

def print_DDT(ddt, sorted_field_elements):
    values = ddt.values()
    rows = []
    for v in values:
        rows.append(list(v.values()))
    print(table(rows = rows, header_row=[str(x) for x in sorted_field_elements], header_column = ['a/b']+[str(x) for x in sorted_field_elements], frame = True))

def permutation_distance(p1, p2):
    p1_dict = p1.dict()
    p2_dict = p2.dict()
    distance = 0
    for key in p1_dict:
        if p1_dict[key] != p2_dict[key]:
            distance = distance + 1
    return distance
def group_distance(G1, G2):
    min_distance = max(len(G1), len(G2))
    for x in G2:
        if len(x.cycle_tuples()) != 0:
            for y in G1:
                d = permutation_distance(x, y)
                if d < min_distance:
                    min_distance = d
    return min_distance

def differencial_uniformity_by_distance(G1, G2):
    return G1.cardinality() - group_distance(G1, G2) 

def find_conjugated(S,G1,G2, TranslationDict):
    isomorphism = dict()
    isomorphism_by_gens = dict(zip(G1.minimal_generating_set(), G2.minimal_generating_set()))
    for gen_combination in powerset(G1.minimal_generating_set()):
        preimage = S.identity()
        image = S.identity()
        for gen in gen_combination:
            preimage = preimage*gen
            image = image * isomorphism_by_gens[gen]
        isomorphism[preimage] = image
    conj = []
    for x in S.domain():
        conj.append((isomorphism[TranslationsDict[x]](S.domain()[0])))
    return S(conj)

def build_graph(shifts):
    result = Graph()
    fields_elements_to_pairs = defaultdict(lambda: [])
    for item in shifts:
        for transposition in item.cycle_tuples():
            result.add_vertex(transposition)
            fields_elements_to_pairs[transposition[0]].append(transposition)
            fields_elements_to_pairs[transposition[1]].append(transposition)
        for pair in itertools.combinations(item.cycle_tuples(), 2):
            result.add_edge(pair[0], pair[1])
    vertices = result.vertices()
    for v in vertices:
        for u in fields_elements_to_pairs[v[0]]:
            if u == v:
                continue
            result.add_edge(v,u) 
        for u in fields_elements_to_pairs[v[1]]:
            if u == v:
                continue
            result.add_edge(v,u) 
    return result

def print_group(G):
    for item in G:
        if item != G.identity():
            print(item)

In [3]:
n = 8
F = GF(2^n, repr='int')
sorted_field = F.list()
sorted_field.sort()
S = SymmetricGroup(domain=sorted_field)
T, TranslationsDict = build_translations_group(sorted_field,sorted_field,S)

inv = build_inversion(sorted_field, S, F)
G = conjugate(S,T,inv)


#all_shifts = T.list()[1:2^n]
#complete_graph = build_graph(all_shifts)

In [4]:
def get_right_order(transposition):
    if transposition[0] > transposition[1]:
        return transposition[::-1]
    return transposition

class MaxFinder:
    def __init__(self, collection, size):
        self.distance_map = {i:set() for i in range(0,size+1,2)}
        max_value = 0
        for item in collection:
            value = item.distance()
            self.distance_map[value].add(item)
            if value > max_value:
                max_value = value
        self.max_pointer = max_value

    def max(self):
        return self.max_pointer
    def recalculate_max(self,old_d, new_d, item):
        if old_d != new_d:
            self.distance_map[old_d].remove(item)
            self.distance_map[new_d].add(item)

            if new_d > self.max_pointer:
                #Расстояние увеличилось. Нужно передвинуть указатель.
                self.max_pointer = new_d
            elif len(self.distance_map[self.max_pointer]) == 0:
                #Расстояние не увеличилось. Максимум уменьшился. Нужно передвинуть указатель.
                if self.max_pointer - 2 < 0:
                    raise Exception("Unintended behavior in MaxFinder")
                if len(self.distance_map[self.max_pointer - 2]):
                    self.max_pointer -= 2 
                    return

                if self.max_pointer - 4 < 0:
                    raise Exception("Unintended behavior in MaxFinder")
                if len(self.distance_map[self.max_pointer - 4]):
                    self.max_pointer -= 4 

In [5]:
class Delta:
    def __init__(self, T, G, size):
        transposition_map = {}
        t_collection = []

        for item in T:
            if item == T.identity():
                continue
            t = Element(item)
            t_collection.append(t)
            for tr in item.cycle_tuples():
                transposition_map[tr] = t
        
        self.Dg_collection = []
        for g in G:
            if g == G.identity():
                continue
            self.Dg_collection.append(Dg(Element(g), t_collection, transposition_map, size))

        self.max_finder = MaxFinder(self.Dg_collection, size)
        
    def distance(self):
        return self.max_finder.max()
    
    def __repr__(self):
        res = ""
        for item in self.Dg_collection:
            res += f"{item}\n"
        return f"DELTA:\ntotal_distance={self.distance()}\n{res}\n"   


class Dg:
    def __init__(self, g, T, transposition_map, size):  
        self.Ig_map = {}
        for t in T:
            self.Ig_map[t] = I_t_g(t, g)
        self.g = g
        self.transposition_map = transposition_map
        
                
        self.max_finder = MaxFinder(self.Ig_map.values(), size)

    def distance(self):
        return self.max_finder.max()

    def __repr__(self):
        res = ""
        new_line = '\n'
        for i,key in enumerate(self.Ig_map):
            if i == len(self.Ig_map)-1:
                new_line = ''
            res += f"\t{self.Ig_map[key]}" + new_line
        return f"  Dg(distance={self.distance()}):\n {res}"

class I_t_g:
    def __init__(self, t, g):
        self.t_g_intersection = g.intersection(t)
        self.g = g
        self.t = t

    def distance(self):
        return 2*len(self.t_g_intersection)

    def __repr__(self):
        return f"I(t, g):[intersection={self.t_g_intersection}; g={self.g}; t={self.t}]"

class Element:
    def __init__(self, g):
        self.g_set = set(g.cycle_tuples())
        self.element_of_field_to_transposition_map = dict()

        for transpose in g.cycle_tuples():
            self.element_of_field_to_transposition_map[transpose[0]] = transpose
            self.element_of_field_to_transposition_map[transpose[1]] = transpose

    def get_all_transpositions(self):
        return self.g_set
        
    def conjugate(self, sigma):
        sigma_s = self.get_transposition(sigma[0])
        sigma_r = self.get_transposition(sigma[1])
        
        if sigma_s[0] == sigma[0]:
            new_sigma_s = get_right_order((sigma[1], sigma_s[1]))
            self.element_of_field_to_transposition_map[sigma_s[1]] = new_sigma_s
        else:
            new_sigma_s = get_right_order((sigma[1], sigma_s[0]))
            self.element_of_field_to_transposition_map[sigma_s[0]] = new_sigma_s

        if sigma_r[0] == sigma[1]:
            new_sigma_r = get_right_order((sigma[0], sigma_r[1]))
            self.element_of_field_to_transposition_map[sigma_r[1]] = new_sigma_r
        else:
            new_sigma_r = get_right_order((sigma[0], sigma_r[0]))
            self.element_of_field_to_transposition_map[sigma_r[0]] = new_sigma_r

        self.g_set.remove(sigma_s)
        self.g_set.remove(sigma_r)
        self.g_set.add(new_sigma_s)
        self.g_set.add(new_sigma_r)

        self.element_of_field_to_transposition_map[sigma[0]] = new_sigma_r
        self.element_of_field_to_transposition_map[sigma[1]] = new_sigma_s
    

    def contains(self, sigma):
        try:
            return sigma in self.g_set
        except:
            print(sigma)
            print(self.g_set)
        
    def intersection(self, other):
        return self.g_set.intersection(other.g_set)
        
    def get_transposition(self, alpha):
        return self.element_of_field_to_transposition_map[alpha]

    def __repr__(self):
        return f"{self.g_set}"



In [6]:
def recalculate_I_t_g(I: I_t_g, sigma_s: tuple, sigma_r: tuple, new_sigma_s: tuple, new_sigma_r: tuple, dist_counter = None):
    if dist_counter == None:
        if I.g.contains(sigma):
            #нужно ли проверять??? вроде уже проверяли
            return
        else:
            if sigma_s in I.t_g_intersection:
                I.t_g_intersection.remove(sigma_s)
            if sigma_r in I.t_g_intersection:
                I.t_g_intersection.remove(sigma_r)
    
            if I.t.contains(new_sigma_s):
                I.t_g_intersection.add(new_sigma_s)
            if I.t.contains(new_sigma_r):
                I.t_g_intersection.add(new_sigma_r)
    else:
        if I.g.contains(sigma):
            #нужно ли проверять??? вроде уже проверяли
            return
        else:
            dist_counter[I.distance()] -= 1
            if sigma_s in I.t_g_intersection:
                I.t_g_intersection.remove(sigma_s)
            if sigma_r in I.t_g_intersection:
                I.t_g_intersection.remove(sigma_r)
    
            if I.t.contains(new_sigma_s):
                I.t_g_intersection.add(new_sigma_s)
            if I.t.contains(new_sigma_r):
                I.t_g_intersection.add(new_sigma_r)
            dist_counter[I.distance()] += 1
            
def recalculate_Dg(Dg, sigma, dist_counter = None):
    if dist_counter == None:
        if Dg.g.contains(sigma):
            return
        else:
            sigma_s = Dg.g.get_transposition(sigma[0])
            sigma_r = Dg.g.get_transposition(sigma[1])
            
            if sigma_s[0] == sigma[0]:
                new_sigma_s = get_right_order((sigma[1], sigma_s[1]))
            else:
                new_sigma_s = get_right_order((sigma[1], sigma_s[0]))
    
            if sigma_r[0] == sigma[1]:
                new_sigma_r = get_right_order((sigma[0], sigma_r[1]))
            else:
                new_sigma_r = get_right_order((sigma[0], sigma_r[0]))
    
            ts = Dg.transposition_map[sigma_s]
            tr = Dg.transposition_map[sigma_r]
            new_ts = Dg.transposition_map[new_sigma_s]
            new_tr = Dg.transposition_map[new_sigma_r]
    
            Ig = Dg.Ig_map
    
            for item in [ts, tr, new_ts, new_tr]:
                old_d = Ig[item].distance()
                recalculate_I_t_g(Ig[item], sigma_s, sigma_r, new_sigma_s, new_sigma_r)
                new_d = Ig[item].distance()
                Dg.max_finder.recalculate_max(old_d, new_d, Ig[item])
    
            #После обработки элемента g, нужно применить сопряжение, чтобы поменять g
            Dg.g.conjugate(sigma)
    else:
        if Dg.g.contains(sigma):
            return
        else:
            sigma_s = Dg.g.get_transposition(sigma[0])
            sigma_r = Dg.g.get_transposition(sigma[1])
            
            if sigma_s[0] == sigma[0]:
                new_sigma_s = get_right_order((sigma[1], sigma_s[1]))
            else:
                new_sigma_s = get_right_order((sigma[1], sigma_s[0]))
    
            if sigma_r[0] == sigma[1]:
                new_sigma_r = get_right_order((sigma[0], sigma_r[1]))
            else:
                new_sigma_r = get_right_order((sigma[0], sigma_r[0]))
    
            ts = Dg.transposition_map[sigma_s]
            tr = Dg.transposition_map[sigma_r]
            new_ts = Dg.transposition_map[new_sigma_s]
            new_tr = Dg.transposition_map[new_sigma_r]
    
            Ig = Dg.Ig_map
    
            for item in [ts, tr, new_ts, new_tr]:
                old_d = Ig[item].distance()
                recalculate_I_t_g(Ig[item], sigma_s, sigma_r, new_sigma_s, new_sigma_r, dist_counter)
                new_d = Ig[item].distance()
                Dg.max_finder.recalculate_max(old_d, new_d, Ig[item])
    
            #После обработки элемента g, нужно применить сопряжение, чтобы поменять g
            Dg.g.conjugate(sigma)

def recalc_group_distance(Delta, sigma, dist_counter = None):
    if dist_counter == None:
        for Dg in Delta.Dg_collection:
            old_distance = Dg.max_finder.max()
            recalculate_Dg(Dg, sigma)
            new_distance = Dg.max_finder.max()
            Delta.max_finder.recalculate_max(old_distance, new_distance, Dg)
    else:
        for Dg in Delta.Dg_collection:
            old_distance = Dg.max_finder.max()
            recalculate_Dg(Dg, sigma, dist_counter)
            new_distance = Dg.max_finder.max()
            Delta.max_finder.recalculate_max(old_distance, new_distance, Dg)


In [7]:
def transposition(i,j):
    return (F.from_integer(i), F.from_integer(j))

In [320]:
f = S.random_element()
G = conjugate(S,T,f)
# print("distance: ", group_distance(T,G))
print("diff. uniformity: ", differencial_uniformity_by_distance(T,G))
print("after transposition:")
G_ = conjugate(S,G,S(transposition(0,1)))
# print("distance: ", group_distance(T,G_))
print("diff. uniformity: ", differencial_uniformity_by_distance(T,G_))
print("after another transposition:")
G__ = conjugate(S,G_,S(transposition(1,3)))
# print("distance: ", group_distance(T,G__))
print("diff. uniformity: ", differencial_uniformity_by_distance(T,G__))

diff. uniformity:  8
after transposition:
diff. uniformity:  4
after another transposition:
diff. uniformity:  2


In [317]:
DELTA = Delta(T,G, 2^n)
print("diff. uniformity: ", DELTA.distance())
recalc_group_distance(DELTA, transposition(0,1))
print("diff. uniformity: ", DELTA.distance())
recalc_group_distance(DELTA, transposition(1,3))
print("diff. uniformity: ", DELTA.distance())

diff. uniformity:  4
diff. uniformity:  2
diff. uniformity:  4


In [None]:
DELTA

In [79]:
G_kuz = conjugate(S, T, build_kuznechik())

In [306]:
DELTA = Delta(T, G, 2^n)
print("diff. uniformity: ", DELTA.distance())

diff. uniformity:  4


In [6]:
# item = DELTA.Dg_collection[0]
# dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
tr_counter = dict()
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        # dist_counter[I_t_g_item.distance()] += 1
        if I_t_g_item.distance() >= DELTA.distance():
            for tr in I_t_g_item.t_g_intersection:
                if tr not in tr_counter:
                    tr_counter[(tr, i)] = 1
                else:
                    tr_counter[(tr, i)] += 1
elem_counter = {_:0 for _ in range(40)}
for item in tr_counter:
    elem_counter[item[0][0].to_integer()] += 1
    elem_counter[item[0][1].to_integer()] += 1

elem_counter = sorted(elem_counter.items(), key=lambda item: -item[1])
elem_counter[:10], tr_counter

NameError: name 'DELTA' is not defined

In [308]:
recalc_group_distance(DELTA, transposition(6, 7))
print("diff. uniformity: ", DELTA.distance())

diff. uniformity:  4


In [394]:
n = 8
F = GF(2^n, repr='int')
sorted_field = F.list()
sorted_field.sort()
S = SymmetricGroup(domain=sorted_field)
T, TranslationsDict = build_translations_group(sorted_field,sorted_field,S)

inv = build_inversion(sorted_field, S, F)
G = conjugate(S,T,inv)

f = S.random_element()
G = conjugate(S, T, f)
DELTA = Delta(T, G, 2^n)
print("diff. uniformity: ", DELTA.distance())

diff. uniformity:  10


In [7]:
# блуждание с последовательным перебором 1
import random

print(DELTA.distance())
for count in range(10):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = 100
    tr = (-1, -1)
    for i in range(2^n):
        for j in range(i + 1, 2^n):
            recalc_group_distance(DELTA, transposition(i, j))
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                tr = (i, j)
            elif mn == dist and random.uniform(0, 1) >= 0.5:
                tr = (i, j)
            recalc_group_distance(DELTA, transposition(i, j))
    # print(mn, tr)
    recalc_group_distance(DELTA, transposition(tr[0], tr[1]))
    if mn == 2:
        break

print("min = ", mn)
# print(DELTA)

8
min =  6


In [468]:
# случайное блуждание
import copy

print(DELTA.distance())
mn = DELTA.distance()
ans = copy.deepcopy(DELTA)
for count in range(10000):
    if DELTA.distance() == 2:
        break
    i = randint(0, 2^n - 1)
    j = randint(0, 2^n - 1)
    while i == j:
        j = randint(0, 2^n - 1)
    if i > j:
        i -= j
        j += i
        i = j - i
    recalc_group_distance(DELTA, transposition(i, j))
    # print(DELTA.distance(), (i, j))
    if DELTA.distance() < mn:
        mn = DELTA.distance()
        ans = copy.deepcopy(DELTA)
print("min = ", mn)
# print(ans)

10
min =  10


In [395]:
F

Finite Field in z8 of size 2^8

In [63]:
# блуждание с последовательным перебором, но слегка оптимизированное (dist_counter без весов)
import random

print(DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

for count in range(12):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = 100
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    for i in range(2^n):
        for j in range(i + 1, 2^n):
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                cnt = dist_counter[dist]
                tr = (i, j)
            elif mn == dist and dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = (i, j)
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
    print(mn, tr)
    recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
    if mn == 2:
        break

print("min = ", mn)
# print(DELTA)

4


KeyError: I(t, g):[intersection={(4, 6), (5, 7)}; g={(0, 2), (4, 6), (1, 3), (5, 7)}; t={(0, 2), (4, 6), (1, 3), (5, 7)}]

In [426]:
# блуждание с последовательным перебором, но слегка оптимизированное (dist_counter без весов)
import random

print(DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

pred = (-1, -1)

for count in range(12):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = 100
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    for i in range(2^n):
        for j in range(i + 1, 2^n):
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                cnt = dist_counter[dist]
                tr = (i, j)
            elif mn == dist and dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = (i, j)
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
    if mn == 2 or tr == pred:
        break
    recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
    print(mn, tr)
    pred = tr

print("min = ", mn)
# print(DELTA)

6


KeyboardInterrupt: 

In [128]:
dist_counter

{0: 510,
 2: 406,
 4: 45,
 6: 0,
 8: 0,
 10: 0,
 12: 0,
 14: 0,
 16: 0,
 18: 0,
 20: 0,
 22: 0,
 24: 0,
 26: 0,
 28: 0,
 30: 0,
 32: 0}

In [148]:
def calculate_neutral_trs(DELTA, dist_counter):
    curr_dist = DELTA.distance()
    bad_transpositions = set()
    neutral_transpositions = set()
    cnt = dist_counter[DELTA.distance()]
    for i in range(2^n):
        for j in range(i + 1, 2^n):
            tr = transposition(i, j)
            recalc_group_distance(DELTA, tr, dist_counter)
            new_dist = DELTA.distance()
            if new_dist > curr_dist or dist_counter[new_dist] < cnt:
                bad_transpositions.add(tr)
            else:
                neutral_transpositions.add(tr)
            recalc_group_distance(DELTA, tr, dist_counter)
    return neutral_transpositions

In [None]:
# item = DELTA.Dg_collection[0]
# dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
tr_counter = dict()
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        # dist_counter[I_t_g_item.distance()] += 1
        if I_t_g_item.distance() >= DELTA.distance():
            for tr in I_t_g_item.t_g_intersection:
                if tr not in tr_counter:
                    tr_counter[(tr, i)] = 1
                else:
                    tr_counter[(tr, i)] += 1
elem_counter = {_:0 for _ in range(40)}
for item in tr_counter:
    elem_counter[item[0][0].to_integer()] += 1
    elem_counter[item[0][1].to_integer()] += 1

elem_counter = sorted(elem_counter.items(), key=lambda item: -item[1])
elem_counter[:10], tr_counter

In [173]:
# блуждание с последовательным перебором, но слегка оптимизированное (dist_counter без весов)
import random

print(DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

pred = (-1, -1)



for count in range(100):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = 100
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    for i in range(2^n):
        for j in range(i + 1, 2^n):
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                cnt = dist_counter[dist]
                tr = (i, j)
            elif mn == dist and dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = (i, j)
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
    if mn == 2:
        print("Big victory of USSR sports")
        break
    if tr == pred:
        neutral_transpositions = calculate_neutral_trs(DELTA, dist_counter)
        print(f"Magic step begins! {len(neutral_transpositions)}")
        recalc_group_distance(DELTA, list(neutral_transpositions)[randint(0, len(neutral_transpositions) - 1)], dist_counter)
        
        # MN = 1000000
        # TR = (-1, -1)
        # CNT = dist_counter[DELTA.distance()]
        # for item in tuple(neutral_transpositions)[:30]:
        #     recalc_group_distance(DELTA, item, dist_counter)
        #     cnt = dist_counter[DELTA.distance()]
        #     for i in range(2^n):
        #         for j in range(i + 1, 2^n):
        #             recalc_group_distance(DELTA, transposition(i, j), dist_counter)
        #             dist = DELTA.distance()
        #             if mn > dist:
        #                 mn = dist
        #                 cnt = dist_counter[dist]
        #                 tr = (i, j)
        #             elif mn == dist and dist_counter[dist] < cnt:
        #                 cnt = dist_counter[dist]
        #                 tr = (i, j)
        #             recalc_group_distance(DELTA, transposition(i, j), dist_counter)
        
           
        #     if (MN > mn) or (MN == mn and CNT < cnt):
        #         MN = mn
        #         CNT = cnt
        #         TR = tr

        #     recalc_group_distance(DELTA, item, dist_counter)
        # tr = TR
        # mn = MN
        # cnt = CNT

    else:
        recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
    print(mn, tr)
    pred = tr

print("min = ", mn)
# print(DELTA)

8
6 (19, 27)
4 (17, 29)
4 (6, 13)
4 (5, 10)
4 (2, 20)
4 (0, 3)
4 (8, 13)
4 (7, 29)
4 (2, 15)
Magic step begins! 25
4 (2, 15)
4 (3, 31)
4 (3, 10)
4 (0, 9)
Magic step begins! 30
4 (0, 9)
4 (5, 20)
4 (0, 9)
Magic step begins! 39
4 (0, 9)
4 (1, 22)
4 (0, 9)
Magic step begins! 30
4 (0, 9)
4 (14, 19)
4 (0, 9)
Magic step begins! 39
4 (0, 9)
4 (26, 28)
4 (0, 9)
Magic step begins! 30
4 (0, 9)
Magic step begins! 23
4 (0, 9)
4 (13, 28)
4 (0, 9)
4 (5, 17)
4 (0, 9)
Magic step begins! 30
4 (0, 9)
4 (12, 14)
4 (0, 9)
Magic step begins! 39
4 (0, 9)
4 (13, 31)
4 (0, 9)
Magic step begins! 30
4 (0, 9)
4 (0, 29)
4 (0, 9)


KeyboardInterrupt: 

In [162]:
# блуждание образующими
import random

print(DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

pred = (-1, -1)

for count in range(100):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = DELTA.distance()
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    i = 0
    for j in range(1, 2^n):
        recalc_group_distance(DELTA, transposition(i, j), dist_counter)
        dist = DELTA.distance()
        if mn > dist:
            mn = dist
            cnt = dist_counter[dist]
            tr = (i, j)
        elif mn == dist and dist_counter[dist] < cnt:
            cnt = dist_counter[dist]
            tr = (i, j)
        elif mn == dist and dist_counter[dist] == cnt:
            print("Not bad", i,j)
        recalc_group_distance(DELTA, transposition(i, j), dist_counter)
    if mn == 2 or tr == pred or mn > DELTA.distance():
        print("произошёл брейк")
        break
    recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
    print(DELTA.distance(), tr)
    pred = tr

print("min =", DELTA.distance())
# print(DELTA)

6
произошёл брейк
min = 6


In [163]:
# блуждание образующими
import random

print(DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

pred = (-1, -1)

for count in range(100):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = DELTA.distance()
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    for i in range(0, 2^n - 1, 2):
        recalc_group_distance(DELTA, transposition(i, i + 1), dist_counter)
        dist = DELTA.distance()
        if mn > dist:
            mn = dist
            cnt = dist_counter[dist]
            tr = (i, i + 1)
        elif mn == dist and dist_counter[dist] < cnt:
            cnt = dist_counter[dist]
            tr = (i, i + 1)
        elif mn == dist and dist_counter[dist] == cnt:
            print("Not bad", i,i+1)
        recalc_group_distance(DELTA, transposition(i, i + 1), dist_counter)
    if mn == 2 or tr == pred or mn > DELTA.distance():
        print("произошёл брейк")
        break
    recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
    print(DELTA.distance(), tr)
    pred = tr

print("min =", DELTA.distance())
# print(DELTA)

6
произошёл брейк
min = 6


In [164]:
# блуждание возмущающими образующими
import random

print(DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

pred = (-1, -1)

for count in range(100):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = DELTA.distance()
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    i = 0
    for j in range(1, 2^(n - 1)):
        recalc_group_distance(DELTA, transposition(i, 2 * j - 1), dist_counter)
        recalc_group_distance(DELTA, transposition(i, 2 * j), dist_counter)
        dist = DELTA.distance()
        if mn > dist:
            mn = dist
            cnt = dist_counter[dist]
            tr = (i, j)
        elif mn == dist and dist_counter[dist] < cnt:
            cnt = dist_counter[dist]
            tr = (i, j)
        elif mn == dist and dist_counter[dist] == cnt:
            print("Not bad", i,j)
        recalc_group_distance(DELTA, transposition(i, 2 * j), dist_counter)
        recalc_group_distance(DELTA, transposition(i, 2 * j - 1), dist_counter)
    if mn == 2 or tr == pred or mn > DELTA.distance():
        print("произошёл брейк")
        break
    recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
    print(DELTA.distance(), tr)
    pred = tr

print("min =", DELTA.distance())
# print(DELTA)

6
произошёл брейк
min = 6


In [280]:
from sage.misc.persist import SagePickler

with open("big win", 'wb') as file:
    gherkin = SagePickler.dumps(DELTA)
    file.write(gherkin)

In [134]:
G_set = [] 
for item in DELTA.Dg_collection:
    res = S.identity()
    for tr in item.g.g_set:
        res*=S(tr)
    G_set.append(res)    

In [135]:
G_gooood = S.subgroup(G_set) 

In [136]:
pi = find_conjugated(S,T,G_gooood,TranslationsDict)

In [137]:
SBox(pi.domain()).nonlinearity()

98

In [143]:
DELTA.distance()

6

In [142]:
recalc_group_distance(DELTA, transposition(0,43), dist_counter)

In [None]:
dist_counter

In [138]:
str(pi.domain())

'[0, 16, 28, 208, 84, 90, 55, 35, 94, 156, 254, 146, 129, 24, 22, 74, 112, 73, 86, 157, 205, 103, 131, 226, 120, 45, 18, 150, 136, 122, 242, 236, 164, 60, 26, 182, 143, 89, 71, 190, 162, 171, 98, 21, 102, 147, 167, 138, 110, 183, 30, 58, 155, 117, 151, 161, 197, 6, 204, 49, 20, 240, 152, 113, 179, 188, 92, 199, 252, 200, 2, 224, 4, 173, 154, 243, 174, 177, 185, 109, 123, 29, 191, 76, 195, 43, 133, 128, 149, 53, 78, 130, 153, 247, 104, 187, 108, 218, 249, 135, 8, 34, 216, 210, 65, 148, 248, 223, 165, 227, 31, 40, 75, 228, 116, 255, 220, 198, 144, 14, 80, 219, 246, 213, 50, 46, 118, 145, 201, 158, 61, 180, 172, 64, 5, 9, 237, 105, 209, 42, 70, 232, 137, 51, 114, 206, 141, 62, 106, 7, 87, 215, 202, 217, 222, 100, 229, 48, 66, 238, 115, 139, 82, 52, 12, 125, 181, 97, 235, 67, 230, 211, 17, 27, 124, 83, 101, 207, 19, 95, 25, 168, 107, 68, 203, 127, 10, 140, 13, 251, 132, 192, 32, 250, 93, 99, 175, 184, 253, 91, 159, 196, 189, 119, 126, 81, 56, 214, 134, 44, 57, 163, 11, 194, 37, 63, 176, 24

In [333]:
from sage.crypto.sboxes import SBox
pi_sbox = SBox(pi.domain())

In [334]:
with open("our SBox.txt", 'w') as file:
    file.write(str(pi_sbox))

In [335]:
pi_sbox.nonlinearity()

90

In [311]:
SBox(build_good_sbox().domain()).algeb()

104

In [312]:
SBox(build_kuznechik().domain()).nonlinearity()

100

In [316]:
SBox(inv.domain()).nonlinearity()

112

ValueError: invalid data to initialize a permutation

In [24]:
import pickle
bbobob = 98
with open(f"big win {bbobob}", 'wb') as file:
    pickle.dump(DELTA, file)

In [463]:
with open("big win 2", 'rb') as file:
    DELTA = pickle.load(file)

In [None]:
mn = 10000

for i in range(500):
    pi = S.random_element()
    dn = SBox(pi.domain()).differential_uniformity()
    mn = min(mn, dn)

mn

In [427]:
import random
import pickle

def bluzhdanie_1(DELTA, dist_counter):
    pred = (-1, -1)
    for count in range(100):
        if DELTA.distance() == 2:
            print('already 2')
            break
        mn = 100
        tr = (-1, -1)
        cnt = dist_counter[DELTA.distance()]
        i = 0
        for j in range(1, 2^n):
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                cnt = dist_counter[dist]
                tr = (i, j)
            elif mn == dist and dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = (i, j)
            recalc_group_distance(DELTA, transposition(i, j), dist_counter)
        if mn <= 6 or tr == pred or mn > DELTA.distance():
            return
        recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
        pred = tr

def bluzhdanie_2(DELTA, dist_counter):
    pred = (-1, -1)
    for count in range(100):
        if DELTA.distance() == 2:
            print('already 2')
            break
        mn = 100
        tr = (-1, -1)
        cnt = dist_counter[DELTA.distance()]
        for i in range(0, 2^n - 1, 2):
            recalc_group_distance(DELTA, transposition(i, i + 1), dist_counter)
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                cnt = dist_counter[dist]
                tr = (i, i + 1)
            elif mn == dist and dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = (i, i + 1)
            recalc_group_distance(DELTA, transposition(i, i + 1), dist_counter)
        if mn <= 6 or tr == pred or mn > DELTA.distance():
            return
        recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
        pred = tr

def bluzhdanie_3(DELTA, dist_counter):
    pred = (-1, -1)
    for count in range(100):
        if DELTA.distance() == 2:
            print('already 2')
            break
        mn = 100
        tr = (-1, -1)
        cnt = dist_counter[DELTA.distance()]
        i = 0
        for j in range(1, 2^(n - 1)):
            recalc_group_distance(DELTA, transposition(i, 2 * j - 1), dist_counter)
            recalc_group_distance(DELTA, transposition(i, 2 * j), dist_counter)
            dist = DELTA.distance()
            if mn > dist:
                mn = dist
                cnt = dist_counter[dist]
                tr = (i, j)
            elif mn == dist and dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = (i, j)
            recalc_group_distance(DELTA, transposition(i, 2 * j), dist_counter)
            recalc_group_distance(DELTA, transposition(i, 2 * j - 1), dist_counter)
        if mn <= 6 or tr == pred or mn > DELTA.distance():
            return
        recalc_group_distance(DELTA, transposition(tr[0], tr[1]), dist_counter)
        pred = tr

def init(DELTA):
    n = 8
    F = GF(2^n, repr='int')
    sorted_field = F.list()
    sorted_field.sort()
    S = SymmetricGroup(domain=sorted_field)
    T, TranslationsDict = build_translations_group(sorted_field,sorted_field,S)
    
    inv = build_inversion(sorted_field, S, F)
    G = conjugate(S,T,inv)
    
    f = S.random_element()
    G = conjugate(S, T, f)
    DELTA = Delta(T, G, 2^n)
    print("diff. uniformity: ", DELTA.distance())

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

counter = 0
cnt_of_big_wins = 0

while True:
    rand = random.uniform(0, 1)
    if rand <= 0.925:
        bluzhdanie_1(DELTA, dist_counter)
        bluzhdanie_2(DELTA, dist_counter)
    else:
        bluzhdanie_3(DELTA, dist_counter)
    if DELTA.distance() <= 6:
        cnt_of_big_wins += 1
        with open(f"big win number {cnt_of_big_wins}", 'wb') as file:
            pickle.dump(DELTA, file)
        print("URAAAAAAAAAAA!!!!!!!!!!!!!!")
    counter += 1
    if counter == 50:
        init(DELTA)
        counter = 0
    print(DELTA.distance())

8
8
8


KeyboardInterrupt: 

In [6]:
n = 8
F = GF(2^n, repr='int')
sorted_field = F.list()
sorted_field.sort()
S = SymmetricGroup(domain=sorted_field)
T, TranslationsDict = build_translations_group(sorted_field,sorted_field,S)
[0, 2, 23, 168, 59, 14, 239, 54, 117, 122, 192, 85, 51, 31, 201, 179, 123, 13, 150, 181, 234, 190, 184, 246, 24, 65, 92, 218, 98, 97, 28, 68, 132, 84, 99, 213, 233, 72, 37, 176, 151, 182, 116, 231, 129, 198, 139, 222, 6, 191, 52, 40, 86, 106, 82, 186, 109, 7, 48, 58, 253, 241, 127, 77, 230, 17, 219, 237, 113, 53, 244, 33, 208, 83, 46, 145, 206, 21, 172, 149, 161, 50, 178, 140, 22, 135, 229, 100, 199, 56, 87, 243, 9, 61, 175, 67, 153, 130, 63, 44, 71, 112, 167, 247, 148, 245, 18, 79, 29, 64, 200, 157, 74, 34, 209, 69, 197, 238, 39, 42, 152, 90, 170, 154, 207, 164, 158, 195, 255, 215, 96, 4, 32, 36, 35, 254, 203, 136, 16, 131, 194, 166, 11, 88, 185, 205, 217, 224, 220, 108, 115, 160, 43, 27, 236, 110, 240, 104, 45, 101, 114, 103, 12, 3, 221, 126, 55, 138, 159, 232, 251, 156, 41, 111, 134, 76, 62, 47, 214, 193, 235, 118, 216, 30, 163, 171, 142, 15, 137, 174, 225, 121, 19, 173, 133, 162, 249, 223, 10, 120, 5, 210, 124, 177, 49, 250, 252, 147, 95, 78, 155, 144, 226, 20, 8, 73, 89, 141, 38, 202, 102, 211, 146, 80, 204, 94, 81, 183, 25, 93, 227, 1, 188, 242, 75, 212, 180, 189, 60, 91, 57, 125, 169, 66, 26, 105, 107, 187, 119, 196, 248, 128, 228, 70, 143, 165]
inv = build_inversion(sorted_field, S, F)
G = conjugate(S,T,inv)

f = S.random_element()
G = conjugate(S, T, f)
DELTA = Delta(T, G, 2^n)
print("diff. uniformity: ", DELTA.distance())

diff. uniformity:  12


In [3]:
with open("better_sbox_1.txt", 'rb') as file:
    sbox = file.read()

In [155]:
from sage.crypto.sboxes import SBox

arr = [0, 16, 28, 208, 84, 90, 55, 35, 94, 156, 254, 146, 129, 24, 22, 74, 112, 73, 86, 157, 205, 103, 131, 226, 120, 45, 18, 150, 136, 122, 242, 236, 164, 60, 26, 182, 143, 89, 71, 190, 162, 171, 98, 21, 102, 147, 167, 138, 110, 183, 30, 58, 155, 117, 151, 161, 197, 6, 204, 49, 20, 240, 152, 113, 179, 188, 92, 199, 252, 200, 2, 224, 4, 173, 154, 243, 174, 177, 185, 109, 123, 29, 191, 76, 195, 43, 133, 128, 149, 53, 78, 130, 153, 247, 104, 187, 108, 218, 249, 135, 8, 34, 216, 210, 65, 148, 248, 223, 165, 227, 31, 40, 75, 228, 116, 255, 220, 198, 144, 14, 80, 219, 246, 213, 50, 46, 118, 145, 201, 158, 61, 180, 172, 64, 5, 9, 237, 105, 209, 42, 70, 232, 137, 51, 114, 206, 141, 62, 106, 7, 87, 215, 202, 217, 222, 100, 229, 48, 66, 238, 115, 139, 82, 52, 12, 125, 181, 97, 235, 67, 230, 211, 17, 27, 124, 83, 101, 207, 19, 95, 25, 168, 107, 68, 203, 127, 10, 140, 13, 251, 132, 192, 32, 250, 93, 99, 175, 184, 253, 91, 159, 196, 189, 119, 126, 81, 56, 214, 134, 44, 57, 163, 11, 194, 37, 63, 176, 244, 212, 59, 111, 193, 3, 41, 166, 169, 142, 39, 23, 186, 38, 241, 69, 221, 33, 121, 77, 54, 96, 160, 234, 47, 36, 15, 79, 88, 72, 239, 170, 233, 231, 178, 85, 225, 245, 1]

sbox = []

for x in arr:
    sbox.append(F.from_integer(x))

Group = conjugate(S, T, S(sbox))
DELTA = Delta(T, Group, 2^n)
print(SBox(arr).differential_uniformity(), SBox(arr).nonlinearity())

In [156]:
print(SBox(arr).differential_uniformity(), SBox(arr).nonlinearity())

6 98


In [165]:
dist_counter = {_:0 for _ in range(0, 2^n+1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1



In [166]:
dist_counter

{0: 37996,
 2: 21711,
 4: 5025,
 6: 293,
 8: 0,
 10: 0,
 12: 0,
 14: 0,
 16: 0,
 18: 0,
 20: 0,
 22: 0,
 24: 0,
 26: 0,
 28: 0,
 30: 0,
 32: 0,
 34: 0,
 36: 0,
 38: 0,
 40: 0,
 42: 0,
 44: 0,
 46: 0,
 48: 0,
 50: 0,
 52: 0,
 54: 0,
 56: 0,
 58: 0,
 60: 0,
 62: 0,
 64: 0,
 66: 0,
 68: 0,
 70: 0,
 72: 0,
 74: 0,
 76: 0,
 78: 0,
 80: 0,
 82: 0,
 84: 0,
 86: 0,
 88: 0,
 90: 0,
 92: 0,
 94: 0,
 96: 0,
 98: 0,
 100: 0,
 102: 0,
 104: 0,
 106: 0,
 108: 0,
 110: 0,
 112: 0,
 114: 0,
 116: 0,
 118: 0,
 120: 0,
 122: 0,
 124: 0,
 126: 0,
 128: 0,
 130: 0,
 132: 0,
 134: 0,
 136: 0,
 138: 0,
 140: 0,
 142: 0,
 144: 0,
 146: 0,
 148: 0,
 150: 0,
 152: 0,
 154: 0,
 156: 0,
 158: 0,
 160: 0,
 162: 0,
 164: 0,
 166: 0,
 168: 0,
 170: 0,
 172: 0,
 174: 0,
 176: 0,
 178: 0,
 180: 0,
 182: 0,
 184: 0,
 186: 0,
 188: 0,
 190: 0,
 192: 0,
 194: 0,
 196: 0,
 198: 0,
 200: 0,
 202: 0,
 204: 0,
 206: 0,
 208: 0,
 210: 0,
 212: 0,
 214: 0,
 216: 0,
 218: 0,
 220: 0,
 222: 0,
 224: 0,
 226: 0,
 228: 0,
 230: 0

In [67]:
print(DELTA.distance(), dist_counter)

6 {0: 38043, 2: 21618, 4: 5070, 6: 294, 8: 0, 10: 0, 12: 0, 14: 0, 16: 0, 18: 0, 20: 0, 22: 0, 24: 0, 26: 0, 28: 0, 30: 0, 32: 0, 34: 0, 36: 0, 38: 0, 40: 0, 42: 0, 44: 0, 46: 0, 48: 0, 50: 0, 52: 0, 54: 0, 56: 0, 58: 0, 60: 0, 62: 0, 64: 0, 66: 0, 68: 0, 70: 0, 72: 0, 74: 0, 76: 0, 78: 0, 80: 0, 82: 0, 84: 0, 86: 0, 88: 0, 90: 0, 92: 0, 94: 0, 96: 0, 98: 0, 100: 0, 102: 0, 104: 0, 106: 0, 108: 0, 110: 0, 112: 0, 114: 0, 116: 0, 118: 0, 120: 0, 122: 0, 124: 0, 126: 0, 128: 0, 130: 0, 132: 0, 134: 0, 136: 0, 138: 0, 140: 0, 142: 0, 144: 0, 146: 0, 148: 0, 150: 0, 152: 0, 154: 0, 156: 0, 158: 0, 160: 0, 162: 0, 164: 0, 166: 0, 168: 0, 170: 0, 172: 0, 174: 0, 176: 0, 178: 0, 180: 0, 182: 0, 184: 0, 186: 0, 188: 0, 190: 0, 192: 0, 194: 0, 196: 0, 198: 0, 200: 0, 202: 0, 204: 0, 206: 0, 208: 0, 210: 0, 212: 0, 214: 0, 216: 0, 218: 0, 220: 0, 222: 0, 224: 0, 226: 0, 228: 0, 230: 0, 232: 0, 234: 0, 236: 0, 238: 0, 240: 0, 242: 0, 244: 0, 246: 0, 248: 0, 250: 0, 252: 0, 254: 0, 256: 0}


In [441]:
bluzhdanie_1(DELTA, dist_counter)

In [437]:
bluzhdanie_2(DELTA, dist_counter)

In [439]:
bluzhdanie_3(DELTA, dist_counter)

In [18]:
good_transpositions = []
for item in DELTA.max_finder.distance_map[6]:
    for dg in item.Ig_map.values():
        if len(dg.t_g_intersection) == 3:
            good_transpositions += generate_all_combinations(dg.t_g_intersection)
            good_transpositions += dg.t_g_intersection
good_transpositions = [get_right_order(x) for x in good_transpositions]

In [19]:
len(good_transpositions)

12045

In [43]:
type(good_transpositions[0][0])

<class 'sage.rings.finite_rings.element_givaro.FiniteField_givaroElement'>

In [116]:
good_transpositions = []
for item in DELTA.max_finder.distance_map[6]:
    for dg in item.Ig_map.values():
        if len(dg.t_g_intersection) == 3:
            good_transpositions += dg.t_g_intersection
super_good_transpositions = generate_all_combinations(good_transpositions)
super_good_transpositions = set([get_right_order(x) for x in super_good_transpositions])

dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

not_bad_trans = []

pred = (-1, -1)
for count in range(10):
    if DELTA.distance() == 2:
        print('already 2')
        break
    mn = DELTA.distance()
    tr = (-1, -1)
    cnt = dist_counter[DELTA.distance()]
    for iteration,trans in enumerate(super_good_transpositions):
        print(iteration,'/',len(super_good_transpositions), len(not_bad_trans),"      ", end='\r')
        recalc_group_distance(DELTA, trans, dist_counter)
        dist = DELTA.distance()
        #if dist_counter[dist] <= 2 and dist <= 8:
            #print("!",dist, dist_counter[dist], trans)
        if mn > dist:
            mn = dist
            cnt = dist_counter[dist]
            tr = trans
        elif mn == dist and dist_counter[dist] <= cnt:
            if dist_counter[dist] < cnt:
                cnt = dist_counter[dist]
                tr = trans
                print(f'\n!{trans}\n',iteration,'/',len(super_good_transpositions),end='\n')
            else:
                not_bad_trans.append(trans)
        recalc_group_distance(DELTA, trans, dist_counter)
    if mn <= 4 or tr == pred or tr == (-1, -1):
        if tr != pred and tr != (-1, -1):
            recalc_group_distance(DELTA, tr, dist_counter)
        print("произошёл брейк")
        break
    recalc_group_distance(DELTA, tr, dist_counter)
    print(DELTA.distance(), dist_counter[DELTA.distance()], tr, end='\n\n')
    pred = tr

print("min =", DELTA.distance())
# print(DELTA)

произошёл брейк       0       / 32385 0        / 32385 0       32385 0        / 32385 0       32385 0        / 32385 0       
min = 6


In [20]:
len(set(super_good_transpositions))

NameError: name 'super_good_transpositions' is not defined

In [117]:
len(not_bad_trans)

1

In [119]:
not_bad_trans

[(189, 228)]

In [132]:
recalc_group_distance(DELTA, transposition(189,228), dist_counter)

In [130]:
DELTA.distance()

6

In [None]:
0: 38014,
 2: 21675,
 4: 5043,
 6: 293,

In [133]:
dist_counter

{0: 37996,
 2: 21711,
 4: 5025,
 6: 293,
 8: 0,
 10: 0,
 12: 0,
 14: 0,
 16: 0,
 18: 0,
 20: 0,
 22: 0,
 24: 0,
 26: 0,
 28: 0,
 30: 0,
 32: 0,
 34: 0,
 36: 0,
 38: 0,
 40: 0,
 42: 0,
 44: 0,
 46: 0,
 48: 0,
 50: 0,
 52: 0,
 54: 0,
 56: 0,
 58: 0,
 60: 0,
 62: 0,
 64: 0,
 66: 0,
 68: 0,
 70: 0,
 72: 0,
 74: 0,
 76: 0,
 78: 0,
 80: 0,
 82: 0,
 84: 0,
 86: 0,
 88: 0,
 90: 0,
 92: 0,
 94: 0,
 96: 0,
 98: 0,
 100: 0,
 102: 0,
 104: 0,
 106: 0,
 108: 0,
 110: 0,
 112: 0,
 114: 0,
 116: 0,
 118: 0,
 120: 0,
 122: 0,
 124: 0,
 126: 0,
 128: 0,
 130: 0,
 132: 0,
 134: 0,
 136: 0,
 138: 0,
 140: 0,
 142: 0,
 144: 0,
 146: 0,
 148: 0,
 150: 0,
 152: 0,
 154: 0,
 156: 0,
 158: 0,
 160: 0,
 162: 0,
 164: 0,
 166: 0,
 168: 0,
 170: 0,
 172: 0,
 174: 0,
 176: 0,
 178: 0,
 180: 0,
 182: 0,
 184: 0,
 186: 0,
 188: 0,
 190: 0,
 192: 0,
 194: 0,
 196: 0,
 198: 0,
 200: 0,
 202: 0,
 204: 0,
 206: 0,
 208: 0,
 210: 0,
 212: 0,
 214: 0,
 216: 0,
 218: 0,
 220: 0,
 222: 0,
 224: 0,
 226: 0,
 228: 0,
 230: 0

In [86]:
tr_history = [(215,219),
(204,251),
(89,254),
(0,80),
(73,252),
(99,171),
(77,157),
(87,157),
(10,139),
(33,114),
(59,83),
(44,202),
(29,135),
(10,144),
(102,247),
(226,233),
(34,225),
(195,228),
(4,240),
(102,202),
(56,240),
(47,240),
(22,202),
(23,193),
(127,216),
(49,188),
(51,58),
(151,160),
(53,219),
(98,148),
(34,156),
(14,180),
(163,182),
(170,182),
(77,122),
(19,75)]

In [87]:
pi = [0, 40, 50, 220, 53, 189, 46, 198, 65, 108, 165, 8, 98, 218, 227, 156, 149, 123, 153, 228, 215, 135, 102, 43, 240, 179, 174, 73, 173, 49, 177, 200, 163, 234, 85, 79, 226, 56, 34, 88, 69, 166, 122, 193, 221, 169, 54, 186, 176, 134, 111, 11, 244, 202, 23, 194, 159, 32, 126, 175, 196, 250, 81, 184, 197, 110, 20, 155, 6, 183, 47, 117, 162, 164, 44, 143, 99, 60, 147, 254, 120, 112, 136, 205, 45, 252, 157, 103, 94, 80, 129, 84, 225, 16, 24, 90, 203, 101, 13, 25, 216, 207, 204, 168, 235, 115, 17, 12, 67, 10, 27, 125, 22, 33, 229, 106, 217, 206, 48, 7, 237, 95, 70, 172, 105, 158, 232, 64, 246, 116, 118, 139, 213, 255, 145, 180, 248, 249, 31, 127, 223, 29, 19, 210, 78, 191, 104, 133, 130, 76, 187, 128, 154, 92, 185, 2, 243, 199, 109, 224, 231, 36, 245, 72, 178, 15, 1, 239, 114, 142, 96, 38, 121, 39, 151, 241, 212, 57, 3, 37, 83, 182, 41, 63, 195, 93, 4, 253, 119, 171, 214, 91, 251, 30, 152, 160, 188, 51, 113, 161, 148, 26, 167, 71, 21, 170, 138, 190, 18, 86, 242, 131, 150, 87, 236, 233, 89, 28, 247, 55, 146, 208, 74, 35, 144, 75, 132, 107, 140, 201, 192, 68, 230, 82, 124, 181, 211, 52, 59, 97, 222, 141, 66, 77, 100, 62, 238, 219, 209, 61, 137, 5, 42, 14, 58, 9]

In [88]:
G = conjugate(S,T,S([F.from_integer(x) for x in pi]))

In [89]:
DELTA = Delta(T,G, 2^n)

In [90]:
tr_history = [transposition(*x) for x in tr_history]

In [91]:
for item in tr_history:
    recalc_group_distance(DELTA,item)

In [84]:
DELTA.distance()

6

In [185]:
import copy

ans_ = copy.deepcopy(DELTA)

In [203]:
for item in DELTA.max_finder.distance_map[8]:
    for dg in item.Ig_map.values():
        if len(dg.t_g_intersection) == 4:
            print(dg.t_g_intersection)

{(66, 237), (108, 195), (62, 145), (60, 147)}
{(139, 187), (207, 255), (144, 160), (88, 104)}


In [210]:
recalc_group_distance(DELTA, transposition(62,160), dist_counter)

In [211]:
DELTA.distance()

8

In [56]:
good_transpositions = []
for item in DELTA.max_finder.distance_map[6]:
    for dg in item.Ig_map.values():
        if len(dg.t_g_intersection) == 3:
            good_transpositions += dg.t_g_intersection
super_good_transpositions = generate_all_combinations(good_transpositions)
super_good_transpositions = [get_right_order(x) for x in super_good_transpositions]
print([x for x in super_good_transpositions if x[0] ==x[1]])

[]


In [57]:
len(set(super_good_transpositions))

32640

In [22]:
dist_counter

{0: 39016,
 2: 20181,
 4: 5025,
 6: 803,
 8: 0,
 10: 0,
 12: 0,
 14: 0,
 16: 0,
 18: 0,
 20: 0,
 22: 0,
 24: 0,
 26: 0,
 28: 0,
 30: 0,
 32: 0,
 34: 0,
 36: 0,
 38: 0,
 40: 0,
 42: 0,
 44: 0,
 46: 0,
 48: 0,
 50: 0,
 52: 0,
 54: 0,
 56: 0,
 58: 0,
 60: 0,
 62: 0,
 64: 0,
 66: 0,
 68: 0,
 70: 0,
 72: 0,
 74: 0,
 76: 0,
 78: 0,
 80: 0,
 82: 0,
 84: 0,
 86: 0,
 88: 0,
 90: 0,
 92: 0,
 94: 0,
 96: 0,
 98: 0,
 100: 0,
 102: 0,
 104: 0,
 106: 0,
 108: 0,
 110: 0,
 112: 0,
 114: 0,
 116: 0,
 118: 0,
 120: 0,
 122: 0,
 124: 0,
 126: 0,
 128: 0,
 130: 0,
 132: 0,
 134: 0,
 136: 0,
 138: 0,
 140: 0,
 142: 0,
 144: 0,
 146: 0,
 148: 0,
 150: 0,
 152: 0,
 154: 0,
 156: 0,
 158: 0,
 160: 0,
 162: 0,
 164: 0,
 166: 0,
 168: 0,
 170: 0,
 172: 0,
 174: 0,
 176: 0,
 178: 0,
 180: 0,
 182: 0,
 184: 0,
 186: 0,
 188: 0,
 190: 0,
 192: 0,
 194: 0,
 196: 0,
 198: 0,
 200: 0,
 202: 0,
 204: 0,
 206: 0,
 208: 0,
 210: 0,
 212: 0,
 214: 0,
 216: 0,
 218: 0,
 220: 0,
 222: 0,
 224: 0,
 226: 0,
 228: 0,
 230: 0

In [23]:
curr_dist = 803

In [25]:
for item in good_transpositions:
        recalc_group_distance(DELTA, item, dist_counter)
        if DELTA.distance() > 6:
            recalc_group_distance(DELTA, item, dist_counter)
        else:
            if DELTA.distance() == 6:
                if dist_counter[6] < curr_dist:
                    curr_dist = dist_counter[6]
                    print(dist_counter[6])
                    break
                else:
                    recalc_group_distance(DELTA, item, dist_counter)
            else:
                print("!!!")
                curr_dist = -1
                break

787


In [454]:
curr_dist = 800

In [26]:
while curr_dist > 500:
    good_transpositions = []
    for item in DELTA.max_finder.distance_map[6]:
        for dg in item.Ig_map.values():
            if len(dg.t_g_intersection) == 3:
                good_transpositions += generate_all_combinations(dg.t_g_intersection)
                good_transpositions += dg.t_g_intersection
    good_transpositions = [get_right_order(x) for x in good_transpositions]
    for item in good_transpositions:
        recalc_group_distance(DELTA, item, dist_counter)
        if DELTA.distance() > 6:
            recalc_group_distance(DELTA, item, dist_counter)
        else:
            if DELTA.distance() == 6:
                if dist_counter[6] < curr_dist:
                    curr_dist = dist_counter[6]
                    print(dist_counter[6])
                    break
                else:
                    recalc_group_distance(DELTA, item, dist_counter)
            else:
                print("!!!")
                curr_dist = -1
                break

783
763
758
749
738
731
713
700
698
691
683
680
678
675
673
670
665
664
656
654
652
633
632
631
625
619
616
613
601
595
589
581
580
579
577
563
560
555
553
542
541
538
526
525
519
515
510
508
507
502
501
498


In [474]:
DELTA.distance()

6

In [13]:
recalc_group_distance(DELTA, item, dist_counter)

TypeError: 'Dg' object is not subscriptable

In [471]:
recalc_group_distance(DELTA, transposition(13,20), dist_counter)

In [144]:
transposition(14,60) in super_good_transpositions

True

In [156]:
len(super_good_transpositions)

143

In [None]:
{(20, 60), (13, 37), (29, 53)}
{(4, 23), (43, 56), (12, 31)}
{(14, 53), (12, 55), (25, 34)}
{(6, 41), (14, 33), (20, 59)}

In [17]:
def generate_all_combinations(transpositions):
    result = []
    for combination in combinations(transpositions,2):
        result.append((combination[0][0],combination[1][0]))
        result.append((combination[0][0],combination[1][1]))

        result.append((combination[0][1],combination[1][0]))
        result.append((combination[0][1],combination[1][1]))
    return [x for x in result if x[0] != x[1]]

In [16]:
from itertools import combinations

In [17]:
list(combinations([(1,2),(4,3), (1,9)],2))

[((1, 2), (4, 3)), ((1, 2), (1, 9)), ((4, 3), (1, 9))]

In [204]:
DELTA.distance()

6

In [205]:
dist_counter

{0: 37921,
 2: 21822,
 4: 5028,
 6: 254,
 8: 0,
 10: 0,
 12: 0,
 14: 0,
 16: 0,
 18: 0,
 20: 0,
 22: 0,
 24: 0,
 26: 0,
 28: 0,
 30: 0,
 32: 0,
 34: 0,
 36: 0,
 38: 0,
 40: 0,
 42: 0,
 44: 0,
 46: 0,
 48: 0,
 50: 0,
 52: 0,
 54: 0,
 56: 0,
 58: 0,
 60: 0,
 62: 0,
 64: 0,
 66: 0,
 68: 0,
 70: 0,
 72: 0,
 74: 0,
 76: 0,
 78: 0,
 80: 0,
 82: 0,
 84: 0,
 86: 0,
 88: 0,
 90: 0,
 92: 0,
 94: 0,
 96: 0,
 98: 0,
 100: 0,
 102: 0,
 104: 0,
 106: 0,
 108: 0,
 110: 0,
 112: 0,
 114: 0,
 116: 0,
 118: 0,
 120: 0,
 122: 0,
 124: 0,
 126: 0,
 128: 0,
 130: 0,
 132: 0,
 134: 0,
 136: 0,
 138: 0,
 140: 0,
 142: 0,
 144: 0,
 146: 0,
 148: 0,
 150: 0,
 152: 0,
 154: 0,
 156: 0,
 158: 0,
 160: 0,
 162: 0,
 164: 0,
 166: 0,
 168: 0,
 170: 0,
 172: 0,
 174: 0,
 176: 0,
 178: 0,
 180: 0,
 182: 0,
 184: 0,
 186: 0,
 188: 0,
 190: 0,
 192: 0,
 194: 0,
 196: 0,
 198: 0,
 200: 0,
 202: 0,
 204: 0,
 206: 0,
 208: 0,
 210: 0,
 212: 0,
 214: 0,
 216: 0,
 218: 0,
 220: 0,
 222: 0,
 224: 0,
 226: 0,
 228: 0,
 230: 0

In [59]:
141*(140)/2

9870

In [60]:
good_transpositions[:10]

[(8, 19),
 (34, 57),
 (40, 51),
 (3, 30),
 (41, 52),
 (44, 49),
 (50, 63),
 (5, 8),
 (34, 47),
 (6, 29)]

In [182]:
S

Symmetric group of order 256! as a permutation group

In [20]:
from sage.crypto.sboxes import SBox

arr = (0, 16, 28, 208, 84, 90, 55, 35, 94, 156, 254, 146, 129, 24, 22, 74, 112, 73, 86, 157, 205, 103, 131, 226, 120, 45, 18, 150, 136, 122, 242, 236, 164, 60, 26, 182, 143, 89, 71, 190, 162, 171, 98, 21, 102, 147, 167, 138, 110, 183, 30, 58, 155, 117, 151, 161, 197, 6, 204, 49, 20, 240, 152, 113, 179, 188, 92, 199, 252, 200, 2, 224, 4, 173, 154, 243, 174, 177, 185, 109, 123, 29, 191, 76, 195, 43, 133, 128, 149, 53, 78, 130, 153, 247, 104, 187, 108, 218, 249, 135, 3, 34, 216, 210, 65, 148, 248, 223, 165, 227, 31, 40, 75, 228, 116, 255, 220, 198, 144, 14, 80, 219, 246, 213, 50, 46, 118, 145, 201, 158, 61, 180, 172, 64, 5, 9, 237, 105, 209, 42, 70, 232, 137, 51, 114, 206, 141, 62, 106, 7, 87, 215, 202, 217, 222, 100, 229, 48, 66, 238, 115, 139, 82, 52, 12, 125, 181, 97, 235, 67, 230, 211, 17, 27, 124, 83, 101, 207, 19, 95, 25, 168, 107, 68, 203, 127, 10, 140, 13, 251, 132, 192, 32, 250, 93, 99, 175, 184, 253, 91, 159, 196, 189, 119, 126, 81, 56, 214, 134, 44, 57, 163, 11, 194, 37, 63, 176, 244, 212, 59, 111, 193, 8, 41, 166, 169, 142, 39, 23, 186, 38, 241, 69, 221, 33, 121, 77, 54, 96, 160, 234, 47, 36, 15, 79, 88, 72, 239, 170, 233, 231, 178, 85, 225, 245, 1)
sbox = []

for x in arr:
    sbox.append(F.from_integer(x))

Group = conjugate(S, T, S(sbox))
DELTA = Delta(T, Group, 2^n)
print(SBox(arr).differential_uniformity(), SBox(arr).nonlinearity())

6 100


In [21]:
dist_counter = {_:0 for _ in range(0, 2^n + 1, 2)}
for item in DELTA.Dg_collection:
    for i, I_t_g_item in enumerate(item.Ig_map.values()):
        dist_counter[I_t_g_item.distance()] += 1

In [23]:
recalc_group_distance(DELTA, transposition(3,8), dist_counter)

In [202]:
test_sbox = S(sbox)
for item in good_for_nonlinearity:
    recalc_group_distance(test_delta, transposition(*item[1]), dist_counter)
    
    print(item, dist_counter[6])
    recalc_group_distance(test_delta, transposition(*item[1]),dist_counter)

(6, (3, 8)) 254
(6, (3, 229)) 303
(6, (5, 248)) 303
(6, (8, 177)) 294
(6, (14, 88)) 307
(6, (14, 105)) 313
(6, (15, 52)) 319
(6, (20, 29)) 314
(6, (20, 54)) 317
(6, (20, 159)) 327
(6, (20, 174)) 320
(6, (21, 67)) 311
(6, (21, 106)) 316
(6, (21, 174)) 321
(6, (21, 241)) 322
(6, (22, 106)) 325
(6, (22, 241)) 325
(6, (23, 67)) 309
(6, (23, 106)) 315
(6, (23, 113)) 307
(6, (23, 180)) 316
(6, (23, 241)) 308
(6, (27, 76)) 307
(6, (27, 124)) 308
(6, (27, 138)) 301
(6, (27, 161)) 307
(6, (28, 37)) 309
(6, (28, 80)) 316
(6, (28, 149)) 315
(6, (29, 37)) 310
(6, (29, 72)) 308
(6, (29, 80)) 305
(6, (29, 191)) 298
(6, (29, 203)) 304
(6, (32, 177)) 306
(6, (32, 246)) 307
(6, (33, 152)) 312
(6, (33, 178)) 314
(6, (33, 198)) 306
(6, (33, 221)) 321
(6, (33, 238)) 300
(6, (37, 134)) 311
(6, (37, 194)) 317
(6, (43, 87)) 303
(6, (43, 252)) 329
(6, (49, 87)) 295
(6, (49, 161)) 317
(6, (52, 141)) 322
(6, (54, 72)) 303
(6, (54, 143)) 310
(6, (54, 203)) 310
(6, (57, 237)) 307
(6, (60, 88)) 311
(6, (60, 104)) 

In [14]:
test_delta = DELTA

In [206]:
result = []
for i in range(2^n-1):
    print(i, len(result), end="\r")
    for j in range(i+1, 2^n):
        recalc_group_distance(test_delta, transposition(i,j))
        dist = test_delta.distance()
        if dist < 6:
            print('!!',i,j)
        elif dist == 6:
            #print('!',i,j)
            result.append((dist, (i,j)))
        recalc_group_distance(test_delta, transposition(i,j))

254 3556

In [207]:
test_sbox = S(sbox)
good_for_nonlinearity = []
for item in result:
    f_new = test_sbox*S(transposition(*item[1]))
    new_sbox = SBox(f_new.domain())
    if new_sbox.nonlinearity() > 100:
        good_for_nonlinearity.append(item)
        print(new_sbox.differential_uniformity(), new_sbox.nonlinearity())

In [176]:
len(good_for_nonlinearity)

121

In [189]:
with open("nonl100.txt", "w") as file:
    for item in good_for_nonlinearity:
        f_new = test_sbox*S(transposition(*item[1]))
        new_sbox = SBox(f_new.domain())
        file.write(str(new_sbox)+"\n")

In [192]:
item

(6, (3, 8))

In [193]:
test_sbox = S(sbox)
for item in good_for_nonlinearity:
    recalc_group_distance(test_delta, transposition(*item[1]))
    
    print(item, test_delta.max_finder.distance_map[6])
    recalc_group_distance(test_delta, transposition(*item))

(6, (3, 8)) 

KeyboardInterrupt: 