The Soviet/Russian Block Cipher GOST Magma Explained 

Hiho, Magma uses a Feistel network, where you don’t need an inverse s-box. So you can use any randomly generated s-box. Clearly, the random one does not fulfill any „good“ construction criteria. Hope that answers your question 🙂. Greetings, Nils

Thank you :-)

Hi Enrico Speranza, Good question! I found a paper [1] in Cryptologia by Curtois et al (including Jean-Jacques Quisquater; who is a well-known crypto professor) who claim that "There is no evidence that the version of GOST submitted to ISO in 2011 is stronger than any previous version of GOST." and that "It appears that the choice of S-boxes has a limited effect on the actual security of GOST against advanced differential attacks." So I don't think that in the original design, the inventors of GOST/Magma thought about differential cryptanalysis and harden the s-boxes against it. But to be honest I don't know, if they published the "original" s-boxes used before the declassification of the cipher :-). References: [1] Courtois, Nicolas T., et al. "Can GOST be made secure against differential cryptanalysis?." Cryptologia 39.2 (2015): 145-156. URL: www.tandfonline.com/doi/abs/10.1080/01611194.2014.915266

Hiho, I am working in this field :-). I am currently leading the development of the CrypTool 2 project and also working in the DECRYPT project where we analyze historical ciphers. I have been involved in cryptography already during my bachelor and master studies and have stayed on this topic during my PhD. Besides that, I am also a "fan" of cryptology, thus, interested in every aspect of it :-). Also, I really like to teach. So I combined that with my RU-vid channel. Greetings, Nils