LLMpediaThe first transparent, open encyclopedia generated by LLMs

Feistel network

Generated by GPT-5-mini
Note: This article was automatically generated by a large language model (LLM) from purely parametric knowledge (no retrieval). It may contain inaccuracies or hallucinations. This encyclopedia is part of a research project currently under review.
Article Genealogy
Parent: FSE Hop 4
Expansion Funnel Raw 82 → Dedup 0 → NER 0 → Enqueued 0
1. Extracted82
2. After dedup0 (None)
3. After NER0 ()
4. Enqueued0 ()
Feistel network
Feistel network
Feistel_cipher_diagram.svg: Amirki derivative work: Amirki (talk) · CC BY-SA 3.0 · source
NameFeistel network
TypeSymmetric cipher construction
InventorsHorst Feistel
Introduced1970s

Feistel network A Feistel network is a symmetric structure for building block ciphers that enabled the design of many influential block ciphers and cryptanalytic studies in the late 20th century. It provides a method to construct invertible permutations from noninvertible components, underpinning algorithms used by institutions such as the National Security Agency and standards bodies like the International Organization for Standardization. The construction influenced cryptographers associated with projects at IBM, RAND Corporation, and academic laboratories at MIT and Stanford University.

History

The Feistel concept emerged from work by Horst Feistel and colleagues at IBM during the 1970s while developing secure systems for Lucifer and later designs that informed Data Encryption Standard development. Implementation and standardization debates involved technical committees of the National Bureau of Standards (later NIST), and the cipher family spread through collaborations among engineers at Hewlett-Packard and researchers at University of California, Berkeley. Cryptanalytic milestones affecting Feistel-based ciphers were reported by analysts affiliated with RAND Corporation, Bell Labs, and university groups at Cornell University and ETH Zurich, with public challenges and conferences such as CRYPTO and EUROCRYPT disseminating proofs and attacks. Legal and policy discussions about export and usage engaged agencies like the United States Department of Commerce and international standards forums including the Internet Engineering Task Force.

Design and Structure

A Feistel network divides an input block into two halves and applies a sequence of rounds where one half is transformed by a round function and combined with the other half, a technique used in designs by engineers at IBM and analysts from NIST. Typical designs reference parameters standardized by bodies such as ANSI and the International Telecommunication Union, and designers consider constraints derived from implementations on hardware platforms by vendors like Intel and ARM Holdings. The structure supports both balanced and unbalanced block sizes, enabling adaptations in products by firms including Siemens and Cisco Systems. Feistel constructions were formalized in cryptographic literature produced by researchers at Princeton University, Harvard University, and University of Cambridge, where proofs of permutation and invertibility properties were published in journals and presented at ACM and IEEE symposia.

Round Function and Variants

Round functions in Feistel networks have been instantiated with S-boxes and linear layers developed by teams at IBM, NIST, and academic labs at University of London and Ecole Polytechnique. Variants include balanced, unbalanced, and generalized Feistel networks studied by cryptographers at RSA Security and in academic groups at Tel Aviv University and Technion – Israel Institute of Technology. Designers often borrow components inspired by constructions from Claude Shannon's work and mixing layers analyzed in papers from École Normale Supérieure and University of Tokyo. Implementations have used complex key schedules devised by practitioners affiliated with GCHQ, Bletchley Park historians, and modern teams at Google and Microsoft Research to resist differential and linear attacks publicized at conferences like Black Hat and DEF CON.

Security Properties and Analysis

Security proofs and analyses for Feistel networks were advanced by theoreticians at University of California, Los Angeles, Columbia University, and New York University. Work on provable security relates to concepts developed in seminars at Institut des Hautes Études Scientifiques and results connected to indistinguishability notions discussed by researchers from Bell Labs and Carnegie Mellon University. Cryptanalyses such as differential and linear cryptanalysis, developed by teams at IBM and Tsinghua University, have been applied to Feistel ciphers leading to refinements in round counts and S-box design by contributors associated with École Polytechnique Fédérale de Lausanne and University of Waterloo. Security margins and bounds are also topics in doctoral theses from University of Oxford and University of Edinburgh and are debated in workshops at IACR meetings.

Implementations and Examples

Prominent Feistel-based ciphers include designs developed at IBM that led to the Data Encryption Standard and commercial products by RSA Security and Sun Microsystems. Variants such as those implemented in Blowfish (by Bruce Schneier at Counterpane Internet Security), and other designs by engineers from Fujitsu and Hitachi have been widely deployed. Implementations for constrained devices were produced by groups at ARM Holdings and embedded teams at Texas Instruments, while high-throughput software implementations have been optimized by teams at Intel and AMD. Open-source projects hosted by organizations like Free Software Foundation and distributed via repositories linked to GitHub reflect practical implementations and test vectors used by practitioners at Mozilla and OpenSSL.

Applications and Performance

Feistel networks underpin encryption in protocols standardized by IETF and widely used in secure communication products from vendors like Cisco Systems and Juniper Networks. They are applied in disk encryption and storage appliances developed by firms such as EMC Corporation and Western Digital, and in protection systems by Symantec and McAfee. Performance considerations led hardware teams at Xilinx and NVIDIA to design ASIC and FPGA accelerators; performance benchmarks have been produced by research groups at University of Illinois Urbana-Champaign and Georgia Institute of Technology. Comparative evaluations between Feistel constructions and substitution–permutation networks were conducted in laboratories at MIT and Caltech, informing selection in standards and commercial products overseen by organizations like ISO and IEEE.

Category:Cryptography