## Figures

## Abstract

Algorithms using 4-pixel Feistel structure and chaotic systems have been shown to resolve security problems caused by large data capacity and high correlation among pixels for color image encryption. In this paper, a fast color image encryption algorithm based on the modified 4-pixel Feistel structure and multiple chaotic maps is proposed to improve the efficiency of this type of algorithm. Two methods are used. First, a simple round function based on a piecewise linear function and tent map are used to reduce computational cost during each iteration. Second, the 4-pixel Feistel structure reduces round number by changing twist direction securely to help the algorithm proceed efficiently. While a large number of simulation experiments prove its security performance, additional special analysis and a corresponding speed simulation show that these two methods increase the speed of the proposed algorithm (0.15s for a 256*256 color image) to twice that of an algorithm with a similar structure (0.37s for the same size image). Additionally, the method is also faster than other recently proposed algorithms.

**Citation: **Yao W, Wu F, Zhang X, Zheng Z, Wang Z, Wang W, et al. (2016) A Fast Color Image Encryption Algorithm Using 4-Pixel Feistel Structure. PLoS ONE 11(11):
e0165937.
https://doi.org/10.1371/journal.pone.0165937

**Editor: **Jun Ma,
Lanzhou University of Technology, CHINA

**Received: **April 13, 2016; **Accepted: **October 20, 2016; **Published: ** November 8, 2016

**Copyright: ** © 2016 Yao et al. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.

**Data Availability: **All relevant data are within the paper.

**Funding: **This work is supported by Major Program of National Natural Science Foundation of China (11290141), National Natural Science Foundation of China (61402030), and Fundamental Research of Civil Aircraft no. MJ-F-2012-04.The funders had no role in study design, data collection and analysis, decision to publish, or preparation of the manuscript.

**Competing interests: ** The authors have declared that no competing interests exist.

## Introduction

With the rapid development of multimedia communications, the efficiency and security of image encryption transmission has become increasingly important. Due to the excellent security properties of chaos, such as ergodicity and sensitivity to initial conditions and parameters, chaos-based image encryption algorithms have attracted more and more attention since they were first proposed by the British mathematician Matthews R. in 1984 [1]. Afterwards, many chaotic image encryption algorithms have been designed based on different chaos maps and structures [2–20]. In particular, due to larger data capacities and higher correlation among pixels, the encryption of color images demand better statistical and diffusion properties in image algorithms than gray images. Thus, color image encryption has recently attracted substantial attention.

Efficiency is a very important factor in the design of chaotic image encryption algorithms. There are some well-known algorithms as examples. All these algorithms were considered safe at the time and gave special attention to their efficiency, yielding successful results. In 2004, Chen et al. proposed a symmetric image encryption scheme that employed the 3D cat map to shuffle the positions of image pixels and used another chaotic map to confuse the relationship between the cipher-image and the plain-image. This algorithm could be used to encrypt a 256*256 image in less than 0.4s [21]. In 2006, Pareek et al. proposed an algorithm that used an external 80-bit secret key and two chaotic logistic maps that could encrypt a 256*256 image in 0.33∼0.39s [22]. In 2013, Fu et al. proposed a very efficient medical image protection scheme based on chaotic maps using a substitution mechanism in the permutation process through a bit-level shuffling algorithm. This algorithm took only 9.5ms to encrypt a 512*512 gray image [23]. However, all three algorithms were broken later. Both Chen’s and Fu’s algorithms were vulnerable to a chosen-plain-text attack [24, 25]. Pareek’s algorithm used logistic maps that have been proven unsafe now. In recent times it has become challenging to find the correct balance of security and efficiency in image encryption algorithms.

Many new thoughts and methods have been introduced to the design of color image encryption algorithms in recent years, as recently as 2015. Liu et al. proposed a new chaotic color image encryption algorithm in which the hash value of the plain image is applied to produce two initial values of the Henon map that generate two pseudo-random sequences [26]. A novel color image encryption with heterogeneous bit-permutation and correlated chaos was proposed by Wang et al. [27]. Murillo-Escobar et al. presented a colour image encryption algorithm based on total plain image characteristics to resist a chosen/known plain image attack, and used a 1D logistic map with optimized distribution to create a fast encryption process [28]. Lang proposed a novel color image encryption method using Color Blend and Chaos Permutation operations in the reality-preserving multiple-parameter fractional Fourier transform domain [29]. Som et al. proposed an algorithm in which the original image is first scrambled using the generalized Arnold cat map to achieve confusion and the scrambled image is then encrypted using chaotic sequences generated by multiple one-dimensional chaotic maps [30]. A perturbed high-dimensional chaos system was designed for image encryption according to Devaney and topological conjugate definition by Tong et al. [31]. The proposed algorithm by Oztruk et al. utilized a Lu-like chaotic system capable of exhibiting both Lorenz-like and Chen-like chaotic system behaviors for different parameter values [32]. We propose an algorithm using 4-pixel Feistel structure and chaotic maps; this algorithm realizes both the security and efficiency needs for a color image [33]. Meanwhile, studies on onset of chaos in discrete nonlinear dynamical systems show potential ways to make selection of chaotic systems and security analysis [34]. Currently, all these algorithms have been shown to be secure, but few are optimized for efficiency.

Feistel structure is a well-known structure for traditional block cipher. Feistel structure don’t need to find inverse functions of encryption round functions for decryptions. In encryption and decryption process, algorithms use the same round functions but Feistel structure in different directions. In this point, it demonstrates that Feistel structure is naturally suitable for chaotic image encryption algorithm design as inverse functions are always difficult to be found for chaotic maps. In this paper, a fast color image encryption algorithm is proposed. This algorithm uses a modified 4-pixel Feistel structure and reduces the round number by changing twist direction in a secure way. It also is shown to improve speed while holding a high security level by utilizing simple round functions based on a piecewise linear function, a tent map is proposed.

## Proposed algorithm

The proposed algorithm can be divided into 3 levels. The basic level utilizes the functions based on multiple chaotic maps. The intermediate level uses the 4-pixel Feistel structure. The top level is the dependent encryption process.

### Functions based on multiple chaotic maps

On the basic level, five chaotic maps or functions are used. Two 3D chaotic systems (Lorenz system as Eq (1) and Chen’s system as Eq (2)) are utilized as key generators to offer round keys for encryption and decryption. Compared with low-dimension maps, the high-dimension chaotic system is more complex with more variables and parameters, which makes algorithm’s key space larger and system variables’ time sequence more erratic and unpredictable. When *p* = 10, *r* = 28 and *t* = 8/3, Lorenz system involves chaotic state and when *a* = 35, *b* = 3 and *c* = 28, Chen’s system is chaotic.
(1)
where *p* = 10, *r* = 28 and *t* = 8/3.
(2)
where *a* = 35, *b* = 3 and *c* = 28.

With and as the initial conditions, the Lorenz system and Chen’s system are solved using the 4^{th} order Runge-Kutta method with a step size of *h* = 0.001. Solutions {*x*_{1}, *x*_{2}, *x*_{3}} of each system at step *i* are noted as {*x*_{1}(*i*), *x*_{2}(*i*), *x*_{3}(*i*)}.After being initialized *M*_{0} and *N*_{0} times, these two systems generate 6 round keys using Eq (3). Thus, the variables are needed to construct seed keys of the algorithm.
(3)

Six piecewise linear functions (shown in Eq (4)) and eight tent maps (shown in Eq (5)) are used to construct the round function, shown in Fig 1.

Piecewise linear functions have many good properties in design of chaotic encryption algorithms, such as simplicity in representation, efficiency in implementation, and good dynamical behavior. It has been known that piecewise linear functions are ergodic and have uniform invariant density function on their definition intervals.

The simplicity of the round function contributes to the excellent speed performance of our algorithm.
(4)
where 0 ≤ *x* ≤ 1 and 0 < *p* < 0.5.
(5)

In the round function, the parameters *p*1 and *p*2 are generated with Eqs (6) and (7). Six initial values *IV*1, *IV*2, *IV*3, *IV*4, *IV*5, and *IV*6 are generated from Eq (8).
(6) (7)
where *a*.1, *a*.2, *a*.3, *b*.1, *b*.2 and *b*.3 represent six colors that have been handled by the round keys with pixel *a* and pixel *b* (different that those in Fig 1).
(8)
where *a*.1, *a*.2, *a*.3, *b*.1, *b*.2 and *b*.3 have the same meanings as those in Eqs (6) and (7).

After parameters *p*1, *p*2 and 6 initial values *IV*1, *IV*2, *IV*3, *IV*4, *IV*5 and *IV*6 have been generated, there are 8 tent maps (as shown in Eq (5)) that are used to improve the chaotic properties. The 6 outputs can then be obtained using six piecewise linear functions, which will consist of 6 cipher colors used to encrypt 2 pixels after the use of Eq (9).
(9)

### Modified 4-pixel Feistel structure

At the intermediate level, the modified 4-pixel Feistel structure is used to realize efficient diffusion among 4 pixels at the same time. However, unlike [33], the rounded number of the modified structure reduces while changing its twist direction to remain secure.

The 4-pixel Feistel structure is used twice during the encryption process. However, due to the different functions, each iteration has a different structure, as shown in Fig 2.

When the 4-pixel Feistel structure is first used it has two different rounds. The first round uses a simple round function constructed in the previous subsection, using two group of round keys, *K* = {*k*_{1}, *k*_{2}, *k*_{3}} generated by the Lorenz system and *K*′ = {*k*_{4}, *k*_{5}, *k*_{6}}, generated by Chen’s system. The second round creates diffusion among 4 pixels using x-or operations instead of completing the confusion process used in the first round, as is done in the traditional Feistel method. The confusion in the first iteration is completed by the second iteration of the 1-round 4-pixel Feistel structure.

### Dependent encryption process

At the top level, two instances of dependent encryption processes in different directions are used to extend the effect of changes to all pixels in the image and to resist known-/chosen- plain-text attacks and chosen cipher attacks.

All the blocks (represented by (*i*, *j*)) are defined by Eq (10), which naturally change the form of the image (shown as Fig 3) and handle the intersected block (shown as Fig 4).
(10)
where *height* and *width* represent the height and width of the origin image. Here, *i* = 1, 3, 5, …, 1 ≤ *i* ≤ *height*, *j* = 1, 2, …, and 1 ≤ *j* ≤ *width*.

The proposed algorithm is described by pseudo-code in Alg. 1 and the process and is described by a flow chart in Fig 5.

**Algorithm 1** Proposed algorithm

*Lorenz* *system* *initializes*, *K* *is* *generated*

*Chen*′ *s* *system* *initializes*, *K*′ *is* *generated*

**for** 1 ≤ *i* ≤ *height* − 1 **do**

**for** 1 ≤ *j* ≤ *width* **do**

4 − *pixel* *Feistel* *of* *first* *time* *for* *block*(*i*, *j*)

*j* = *j*+1

**end for**

*i* = *i*+2

**end for**

**for** *height* − 1 ≥ *i* ≥ 1 **do**

**for** *width* ≥ *j* ≥ 1 **do**

4 − *pixel* *Feistel* *of* *second* *time* *for* *block*(*i*, *j*)

*j* = *j* − 1

**end for**

*i* = *i* − 2

**end for**

## Experimental results and cryptanalysis

In our experiments the following equipment was used, CPU: Intel Core2 Quad CPU Q9500 2.83GHz; Memory: 4.00 GB; Operating system: Windows 7 pro; Coding tool: Visual studio 2012. The experiments include randomness test, histogram analysis, correlation of two adjacent pixels, NPCR and UACI, sensitivity to cipher image, information entropy, key sensitivity, and key space analysis.

The encryption results and corresponding decryption results of Lena (512*512), all-zero image (512*512), white(650*492), flower(1024*768) and mountain(680*360) are shown in Fig 6. Keys , , , , , are used; *M*_{0} = 20 and *N*_{0} = 30. , and are initial values of Lorenz system, while , and are initial values of Chen’s system. *M*_{0} and *N*_{0} are the initialization times for these two systems. If it is not otherwise noted, all encryption and decryption examples in our research used the above keys.

(a) Plain image Lena; (b) Encrypted image of Lena; (c) Recovered image of Lena; (d) all-zero image; (e)Encrypted image of all-zero image; (f)Recovered image of all-zero image; (g) Plain image white; (h) Encrypted image of white; (i) Recovered image of white; (j) Plain image flower; (k) Encrypted image of flower; (l) Recovered image of flower; (m) Plain image mountain; (n) Encrypted image of mountain; (o) Recovered image of mountain.

### Randomness test

We use sts-2.1.2 test suite offered by NIST(National Institute of Standards and Technology) to test the randomness of our cipher [35]. For each test of sts-2.1.2, there is a predefined threshold for p-value, namely 0.01. When p-value is larger than 0.01, we can conclude the statistical test is passed successfully and the tested sequence is considered as random with 99% confidence. According to results shown in Table 1, we can conclude that our cipher sequence has sufficient randomness.

### Histogram analysis

Histograms show the distribution of pixel values in an image. The ideal histogram of a cipher image is uniform. The RGB histogram values of the plain image and the cipher image of Lena, all-zero, white, flower and mountain are shown in Figs 7–11.

(a) Histogram of red channel of Lena; (b) Histogram of green channel of Lena; (c) Histogram of blue channel of Lena; (d) Histogram of red channel of cipher; (e)Histogram of green channel of cipher (f)Histogram of blue channel of cipher.

(a) Histogram of red channel of all-zero; (b) Histogram of green channel of all-zero; (c) Histogram of blue channel of all-zero; (d) Histogram of red channel of cipher; (e)Histogram of green channel of cipher (f)Histogram of blue channel of cipher.

(a) Histogram of red channel of white; (b) Histogram of green channel of white; (c) Histogram of blue channel of white; (d) Histogram of red channel of cipher; (e)Histogram of green channel of cipher (f)Histogram of blue channel of cipher.

(a) Histogram of red channel of flower; (b) Histogram of green channel of flower; (c) Histogram of blue channel of flower; (d) Histogram of red channel of cipher; (e)Histogram of green channel of cipher (f)Histogram of blue channel of cipher.

(a) Histogram of red channel of mountain; (b) Histogram of green channel of mountain; (c) Histogram of blue channel of mountain; (d) Histogram of red channel of cipher; (e)Histogram of green channel of cipher (f)Histogram of blue channel of cipher.

It can be found that the histograms of the cipher image are close to uniform. Thus, a frequency analysis cannot be used to break the algorithm.

### Correlation of two adjacent pixels

The correlation of two adjacent pixels can be calculated using the following formula:
(11)
where , , , and *N* = *height* ∗ *width*.

First, we use this formula to test the correlation between various colors in Lena and its cipher image; this comparison shows that the correlation property between the plain image and the cipher image is good. Results are shown in Table 2.

Then, the correlation between different colors of two adjacent pixels of Lena’s, all-zero’s, white’s, flower’s and mountain’s cipher is tested. Lena’s results are shown in Tables 3–5. The results from the all-zero image are shown in Tables 6–8. All results have been compared with algorithms also using 4-pixel Feistel structure [33]. And the test results of white’s, flower’s and mountain’s cipher are shown in Table 9.

It can be found that the performance of the proposed algorithm is nearly as good as that of the algorithm in [33]. This can be seen more clearly by comparing it with the algorithms proposed by Wang [27], Murillo-Escobar [28] and Tong [31], all in 2015 and by Wu [36] and Tong [37], both in 2016. To our knowledge, few algorithms proposed recently handle the correlation between different colors. Thus, there may be a need for a color image encryption algorithm. Because there is no recent data on correlation between different colors, the data shown in Table 10 is just the correlation between the same colors.

Results show that different colors in different directions have little correlation and the proposed algorithm has better correlation performance than the other recent algorithms.

### NPCR and UACI

The Number of Pixels Change Rate (NPCR) indicates the rate of the number of pixels that change when one pixel in the plain image is changed. As the NPCR approaches 99.6094%, the more sensitive the crypto-system is to changes in the plain image, and the more effective it is in resisting a plaintext attack. The UACI(Unified Average Changing Intensity) indicates the average intensity of differences between the plain image and the ciphered image. As The UACI approaches 33.4635%, the crypto-system becomes more effective at resisting differential attacks. NPCR and UACI values can be calculated as follows,
(12) (13)
where *c*_{1}(*i*, *j*) and *c*_{2}(*i*, *j*) are the cipher-image pixel values before and after one pixel of the plain image is changed. If *c*_{1}(*i*, *j*) ≠ *c*_{2}(*i*, *j*), *D*(*i*, *j*) = 1; otherwise, *D*(*i*, *j*) = 0.

The test figures are shown as Fig 12, and the results are shown in Table 11 and Table 12.

(a) Plain image Lena; (b) Encrypted image of Lena; (c) Encrypted image of Lena with a pixel changed; (d) all-zero Image; (e)Encrypted image of all-zero Image; (f)Encrypted image of all-zero with a pixel changed; (g) Plain image white; (h) Encrypted image of white; (i) Encrypted image of white with a pixel changed; (j) Plain image flower; (k) Encrypted image of flower; (l) Encrypted image of flower with a pixel changed; (m) Plain image mountain; (n) Encrypted image of mountain; (o) Encrypted image of mountain with a pixel changed.

These results show the good diffusion property of the algorithm. In addition, this indicates that the algorithm can resist plain-text attacks and differential attacks.

### Sensitivity to cipher image

As done in [13], when one pixel of cipher image is changed, the recovered plain image exhibits no correlation to the plain image, then the cipher can resist a chosen-cipher attack. Similarly, the NPCR and correlation between the recovered image, with one pixel of the cipher image changed, and the plain image are computed to prove the proposed algorithm’s resistance to the chosen-cipher attack. Test figures are shown as Fig 13, and results are shown in Table 13.

(a) cipher of Lena; (b) decrypted image of Lena’s cipher; (c) decrypted image of Lena’s cipher with a pixel changed; (d) cipher of all-zero; (e) decrypted image of all-zero’s cipher; (f) decrypted image of all-zero’s cipher with a pixel changed; (g) cipher of white; (h) decrypted image of white’s cipher; (i) decrypted image of white’s cipher with a pixel changed; (j) cipher of flower; (k) decrypted image of flower’s cipher; (l) decrypted image of flower’s cipher with a pixel changed; (m) cipher of mountain; (n) decrypted image of mountain’s cipher; (o) decrypted image of mountain’s cipher with a pixel changed.

The results show that the proposed algorithm can resist a chosen-cipher attack.

### Information entropy

Information entropy of a cipher image can be computed as Eq (14).
(14)
where *p*(*m*_{i}) represents the probability of symbol *m*_{i}, and *log*_{2} represents the base 2 logarithm so that the entropy is expressed in bits, *N* represents the number of bits used to represent a pixel.

For one color channel of a pixel, it’s clear that *N* = 8. If an image is ideally random, for each *i*, *p*(*m*_{i}) = 1/256. Thus, the ideal value of *H*(*m*) is 8. The information entropy of ciphers encrypted by the proposed algorithm is shown in Tables 14 and 15.

The results show that the entropy of all the three color channels is close to the ideal value of 8. Thus, the algorithm is secure against entropy attacks.

### Key sensitivity

Key sensitivity is a simple way to find out the size of the key space [14]. In this test, we adjust keys in double form by changing the last number of the decimal and adjust integer keys by adding 1. Then, the correlation between the ciphers before and after the change to the key will be computed. This is done for both the encryption process and the decryption process (shown as Figs 14 and 15).

(a) cipher of Lena; (b) cipher of Lena with key changed 10^{−15}.

(a) Decrypted image of Lena’s cipher; (b) Decrypted image of Lena’s cipher with key changed 10^{−15}.

The original keys are , , , , , , *M*_{0} = 20 and *N*_{0} = 30.

The results for encryption key sensitivity are shown in Table 16.

The results for decryption key sensitivity show as Table 17.

Thus, we have shown that the modified chaotic algorithm is sensitive to small key changes, such that a small change in the key will generate a completely different decryption result and cannot be used to find the correct plain image.

### Key space analysis

In the previous subsection, it us shown that a key in double form has a precision of 10^{−15}. As mentioned in the beginning of this section, there are 6 doubles and 2 integers used as keys for the proposed algorithm. Even if integers are ignored, the key space, composed of all 6 double numbers, is greater than 10^{15*6} > 2^{300}. Thus, the key space is large enough to resist a brute-force attack.

## Speed analysis

Compared with the algorithm proposed in [33], which also uses the 4-pixel Feistel structure, this algorithm has two methods that can be used to speed it up, namely the simple round function and the modified 4-pixel Feistel structure.

The round function in the algorithm is simpler than the one introduced in [33], where three chaotic functions constructed one round function for one color of one pixel (Fig 16). For each round of [33], 12 piecewise linear functions and 6 logistic functions are needed. However, in our research, 6 piecewise linear functions and 8 tent maps replace the 12 piecewise linear functions and 6 logistic maps used in [33]. As a result, the computation for each round function becomes easier.

The second method used to speed up the algorithm is the modified 4-pixel Feistel structure. It can easily be found that the algorithm given in [33] can be divided into 2 independent parts each of which has a 2-round Feistel structure (Fig 17) in the 2 times of dependent encryption progress. The use of these two methods means that slightly different functions are used. If these two functions are not secure, the dependent encryption progress will be meaningless. As a result, we attempt to classify the security properties of these two functions.

The first time of dependent encryption progress can be presented in Fig 18 (8-pixel example). Due to the good properties of round functions based on the multiple chaotic system, the two encrypted pixels can be treated as result of two other pixels, but independent from each other. For an image of 8 pixels, using the algorithm in [33] requires 4 steps to complete the first iteration of the dependent encryption process. A Feistel cipher with two rounds can handle the four pixels so that the position (or diffusion) will not be shown in the image. In this image, the deeper color of the pixel indicates that more pixels affect the handling of this pixel.

It is found that for the four pixels handled in step 1, each is affected by all four pixels. However, for the first 4 pixels handled in step 2, they are affected by the first six pixels. In step 3, the 4 pixels are affected by all 8 pixels in the image. Step 4 extends the affect to pixel 1 and pixel 3. After the first iteration of the dependent encryption, only a few pixels at the beginning and end of the image should be affected by all the pixels. A change of one pixel should affect every pixel in the image, which means that the NPCI and UACR values will be good, which is necessary for a secure image encryption algorithm. Thus, a second iteration of the dependent encryption algorithm is necessary to extend the affect to all pixels in the image. In brief, in the first iteration of dependent encryption the effect of pixels accumulates. During the second iteration of dependent encryption the affect extends through the whole image.

As shown in the analysis above, the first iteration of dependent encryption aims at accumulating the effect of the encryption on the pixels. Thus, a simpler structure(Fig 2)is proposed, so that the accumulation of pixels is just realized by changing the twist direction without encrypting all pixels.

The structure of this method uses the same functions as the original structure, but the computations are more simple. In the first iteration of the dependent encryption, if only the first round with round functions is considered, only two pixels are handled. The affect is propagated as progress continues, as shown in Fig 19. The second round occurs without using round functions and provides a way to extend the results from two pixels to all four pixels in a handled block.

During the second iteration of dependent encryption, only an extension of this affect is needed. This is accomplished using the 1-round Feistel, which is described below. If round functions aren’t taken into count (in effect, simpler functions have been proposed), the operations needed for the modified 4-pixel Feistel structure are only half of the original amount, in both the encryption phase and the key generation phase.

Due to the difference of computer configurations, code optimization, or even image format, the speed of an algorithm is difficult to compare exactly. Some results are shown in Table 18 for reference. As shown, the proposed algorithm is twice as fast as that in [33], which also uses 4-pixel Feistel structure. We also show that our algorithm performs better than those developed in other recent research.

Through our analysis and simulation, our two methods (the simple round function and modified 4-pixel Feistel structure) are shown to accelerate the proposed algorithm to much faster speeds than those found in [33], which also uses 4-pixel Feistel structure, as well as those found in other recent research.

## Conclusions

In our research we propose a fast color image encryption algorithm using 4-pixel Feistel structure and multiple chaotic systems. We perform multiple simulation experiments, including histogram and key space and speed analysis, measure the correlation of two adjacent pixels, and find the NPCR, UACI, information entropy, and key sensitivity values to show that the proposed algorithm has good statistical and diffusion properties and can resist many different types of attacks. In our analysis we give two methods that are used to speed up the algorithm. First, we introduce the use of a simple round function, based on a piecewise linear function, and a tent map is proposed to reduce computational cost during each round. Second, a modified 4-pixel Feistel structure, which reduces round numbers by changing twist direction in a secure way, is proposed to help the algorithm proceed in an efficient way. Simulation results prove that these two methods increase the speed of the proposed algorithm to twice that of a similarly structured algorithm (A 256*256 image can be encrypted in 0.15s compared with 0.37s) and even more for other recently developed algorithms.

## Acknowledgments

This work is supported by Major Program of National Natural Science Foundation of China (11290141), NSFC(61402030), Fundamental Research of Civil Aircraft no. MJ-F-2012-04.

## Author Contributions

**Conceptualization:**WY FW XZ ZZ.**Data curation:**WY FW XZ WW WQ ZW.**Formal analysis:**WY FW XZ.**Funding acquisition:**XZ ZZ.**Investigation:**WY XZ WW WQ ZW.**Methodology:**WY FW XZ ZZ.**Project administration:**XZ ZZ.**Resources:**WY XZ ZZ WW WQ ZW.**Software:**WY XZ ZW WW.**Supervision:**XZ ZZ.**Validation:**WY XZ WW WQ.**Visualization:**WY XZ ZZ WW WQ ZW.**Writing – original draft:**WY XZ ZZ.**Writing – review & editing:**WY FW XZ ZZ WW WQ ZW.

## References

- 1. Matthews R. On the derivation of a “Chaotic” encryption algorithm. Cryptologia. 1984;8(1):29–41.
- 2. Mao Y, Chen G, Lian S. A novel fast image encryption scheme based on 3D chaotic baker maps. International Journal of Bifurcation and Chaos. 2004;14(10):3613–24.
- 3. Gao H, Zhang Y, Liang S, Li D. A new chaotic algorithm for image encryption. Chaos, Solitons & Fractals. 2006;29(2):393–9.
- 4. Xiang T, Liao X, Tang G, Chen Y, Wong K-w. A novel block cryptosystem based on iterating a chaotic map. Physics Letters A. 2006;349(1):109–15.
- 5. Zhou Q, Wong K-w, Liao X, Xiang T, Hu Y. Parallel image encryption algorithm based on discretized chaotic map. Chaos, Solitons & Fractals. 2008;38(4):1081–92.
- 6. Patidar V, Pareek N, Sud K. A new substitution-diffusion based image cipher using chaotic standard and logistic maps. Communications in Nonlinear Science and Numerical Simulation. 2009;14(7):3056–75.
- 7. Liu H, Wang X. Color image encryption based on one-time keys and robust chaotic maps. Computers & Mathematics with Applications. 2010;59(10):3320–7.
- 8. Wang X, Wang X, Zhao J, Zhang Z. Chaotic encryption algorithm based on alternant of stream cipher and block cipher. Nonlinear Dynamics. 2011;63(4):587–97.
- 9. Mirzaei O, Yaghoobi M, Irani H. A new image encryption method: parallel sub-image encryption with hyper chaos. Nonlinear Dynamics. 2012;67(1):557–66.
- 10. Wang X, Teng L, Qin X. A novel colour image encryption algorithm based on chaos. Signal Processing. 2012;92(4):1101–8.
- 11. Kanso A, Ghebleh M. A novel image encryption algorithm based on a 3D chaotic map. Communications in Nonlinear Science and Numerical Simulation. 2012;17(7):2943–59.
- 12. Shuangshuang H, Min L-Q. A color image encryption scheme based on generalized synchronization theorem. Indonesian Journal of Electrical Engineering and Computer Science. 2014;12(1):685–92.
- 13. Wu X, Bai C, Kan H. A new color image cryptosystem via hyperchaos synchronization. Communications in Nonlinear Science and Numerical Simulation. 2014;19(6):1884–97.
- 14. Wu J, Guo F, Liang Y, Zhou N. Triple color images encryption algorithm based on scrambling and the reality-preserving fractional discrete cosine transform. Optik-International Journal for Light and Electron Optics. 2014;125(16):4474–9.
- 15. Hussain I, Shah T, Gondal MA. Image encryption algorithm based on total shuffling scheme and chaotic S-box transformation. Journal of Vibration and Control. 2014;20(14):2133–6.
- 16. Liu H, Zhu Z, Yu H, Zhu Q. Modified projective synchronization between different fractional-order systems based on open-plus-closed-loop control and its application in image encryption. Mathematical Problems in Engineering. 2014;2014.
- 17. Jiang X, Wang H, Tang S, Ma L, Zhang Z, Zheng Z. A new approach to shortest paths on networks based on the quantum bosonic mechanism. New Journal of Physics. 2011;13(1):013022.
- 18. Tang S, Teng X, Pei S, Yan S, Zheng Z. Identification of highly susceptible individuals in complex networks. Physica A: Statistical Mechanics and its Applications. 2015;432:363–72.
- 19. Fu C, Zhang G-y, Bian O, Lei W-m, Ma H-f. A novel medical image protection scheme using a 3-dimensional chaotic system. PloS one. 2014;9(12):e115773. pmid:25541941
- 20. Sun Y, Chen L, Xu R, Kong R. An image encryption algorithm utilizing Julia Sets and Hilbert Curves. PloS one. 2014;9(1):e84655. pmid:24404181
- 21. Chen G, Mao Y, Chui CK. A symmetric image encryption scheme based on 3D chaotic cat maps. Chaos, Solitons & Fractals. 2004;21(3):749–61.
- 22. Pareek NK, Patidar V, Sud KK. Image encryption using chaotic logistic map. Image and Vision Computing. 2006;24(9):926–34.
- 23. Fu C, Meng W-h, Zhan Y-f, Zhu Z-l, Lau FC, Chi KT, et al. An efficient and secure medical image protection scheme based on chaotic maps. Computers in biology and medicine. 2013;43(8):1000–10. pmid:23816172
- 24. Wang K, Zou L, Song A, He Z. On the security of 3D Cat map based symmetric image encryption scheme. Physics Letters A. 2005;343(6):432–9.
- 25. Zhang L-b, Zhu Z-l, Yang B-q, Liu W-y, Zhu H-f, Zou M-y. Cryptanalysis and improvement of an efficient and secure medical image protection scheme. Mathematical Problems in Engineering. 2015;2015.
- 26. Liu H, Kadir A. Asymmetric color image encryption scheme using 2D discrete-time map. Signal Processing. 2015;113:104–12.
- 27. Wang X, Zhang H-l. A color image encryption with heterogeneous bit-permutation and correlated chaos. Optics Communications. 2015;342:51–60.
- 28. Murillo-Escobar M, Cruz-Hernández C, Abundiz-Pérez F, López-Gutiérrez R, Del Campo OA. A RGB image encryption algorithm based on total plain image characteristics and chaos. Signal Processing. 2015;109:119–31.
- 29. Lang J. Color image encryption based on color blend and chaos permutation in the reality-preserving multiple-parameter fractional Fourier transform domain. Optics Communications. 2015;338:181–92.
- 30. Som S, Dutta S, Singha R, Kotal A, Palit S. Confusion and diffusion of color images with multiple chaotic maps and chaos-based pseudorandom binary number generator. Nonlinear Dynamics. 2015;80(1-2):615–27.
- 31. Tong XJ, Wang Z, Zhang M, Liu Y, Xu H, Ma J. An image encryption algorithm based on the perturbed high-dimensional chaotic map. Nonlinear Dynamics. 2015;80(3):1493–508.
- 32. Ozturk I, Kilic R. A novel method for producing pseudo random numbers from differential equation-based chaotic systems. Nonlinear Dynamics. 2015;80(3):1147–57.
- 33. Yao W, Zhang X, Zheng Z, Qiu W. A colour image encryption algorithm using 4-pixel Feistel structure and multiple chaotic systems. Nonlinear Dynamics. 2015;81(1-2):151–68.
- 34. Ragulskis M, Navickas Z, Palivonaite R, Landauskas M. Algebraic approach for the exploration of the onset of chaos in discrete nonlinear dynamical systems. Communications in Nonlinear Science and Numerical Simulation. 2012;17(11):4304–15.
- 35.
NIST randomness test suite sts-2.1.2. http://csrc.nist.gov/groups/ST/toolkit/rng/documentation_software.html.
- 36. Wu X, Wang D, Kurths J, Kan H. A novel lossless color image encryption scheme using 2D DWT and 6D hyperchaotic system. Information Sciences. 2016;349:137–53.
- 37. Tong X-J, Zhang M, Wang Z, Ma J. A joint color image encryption and compression scheme based on hyper-chaotic system. Nonlinear Dynamics. 2016:1–24.
- 38. Ping P, Xu F, Wang Z-J. Image encryption based on non-affine and balanced cellular automata. Signal Processing. 2014;105:419–29.
- 39. Faraoun KM. Fast encryption of RGB color digital images using a tweakable cellular automaton based schema. Optics & Laser Technology. 2014;64:145–55.