I Introduction
With the popularity of imaging sensors in smartphones and various video recording scenarios, e.g. dashboard camera and closedcircuit television (CCTV), a vast volume of multimedia data are recorded every day [1, 2]. Meanwhile, the fast network transmission technique allows them to be transmitted among cloud servers, social media platforms, and personal cellphones with evergrowing speed and scope. Once a multimedia file containing some personal privacy information leaves the original control scope, they may threaten the owner and the related persons very quickly. So, the security and privacy of multimedia data have become the concerns of everyone living in the cyberspace. To respond to such a challenge, a large number of multimedia privacy protections and preservation schemes were proposed in the past two decades [3, 4].
One of the wellknown features of chaos is the socalled butterfly effect: if a butterfly flips its wings in Brazil, tomorrow Texas, USA will have a storm. In a more scientific term, we say a system is very sensitive to the initial condition, i.e., a small change at the very beginning will eventually lead to a completely different result. This implies unpredictability because an accurate measurement of the initial condition is in principle impossible. As the sensitivity and unpredictability are some good features we want to have in applications like secure communications and (pseudo) random number generation, many researchers around the world have tried to apply chaos to build various cryptographic primitives: permutation relation [5], pseudorandom number generator [6, 7], hash function [8], privatekey encryption scheme [9, 10], publickey encryption scheme [11], authentication [4], secure communication based on synchronization [12], secretkey share (agreement) algorithm [13], data hiding [14], and privacy protection [15]. The main objective of chaotic cryptanalysis is to disclose the information about the secret key of a chaotic encryption (or secure communication) scheme under all kinds of security models: ciphertextonly attack [5], knownplaintext attack [16, 17], chosenplaintext attack [18, 19], chosenciphertext attack [20], and impossible differential attack [21]. Meanwhile, chaotic cryptanalysis also provides a novel perspective to study the dynamical properties of the underlying chaotic system. As degradation of any chaotic system definitely happens in a digital domain [22, 23], a chaosbased encryption scheme may own some special security defects that do not exist in the nonchaotic encryption schemes [24, 25, 26].
In [27], a chaotic image encryption algorithm was proposed using information entropy value calculated from the plainimage, which is named as IEAIE in this paper. In the algorithm, a pseudorandom number sequence generated by the twodimensional LogisticadjustedSine map (2DLASM) proposed in [6] is used to control a combination of some basic operations, including position permutation and modulo addition. Especially, the information entropy of the plainimage is used to build up a sensitivity mechanism of the encryption result of IEAIE on the plainimage. This paper reports security defects of the chaosbased pseudorandom number generator and the sensitivity mechanism. As for one round version of IEAIE, its three basic parts can be broken with a strategy of the divideandconquer technique in the scenario of differential attack. In addition, each used security metric is questioned from the perspective of modern cryptanalysis.
Ii Concise description of IEAIE
IEAIE ignores any special storage format of image data and just treats it as text data, which is represented as a 8bit matrix ^{1}^{1}1The transform (5) in [27] can not always generate bijective (onetoone) permutation mapping and should be corrected to assure successful decryption of IEAIE.

The secret key is composed of two sets of initial conditions of 2DLASM
(1) and , where .

Keystream generation procedure: 1) iterate 2DLASM (1) from initial condition
(2) times, and from the 201th iteration, assign the obtained sequence into an matrix in the raster order, where
(3) is the information entropy value of image block , namely
(4) is the pixel of value in , and denotes the ratio between the number of in and . In this paper, , where denotes the floor function.
3) set
(5) where is the th row of , is the th column of
(scalar multiplication and addition are performed if a matrix or vector is involved, the same hereinafter),
(6) and denotes the ceil function. Separately conduct the two vectors and with the following way: if there are elements of the same value, change one as the least number that does not exist in the updated vector.
3) iterate 2DLASM (1) from initial condition
(7) times; starting from the 201th iteration, transform every element of the generated sequence by
(8) and set the results into an matrix in the raster order.

Encryption procedure:

Horizontal permutation: for , move the th column of to the th one of , namely .

Vertical permutation: for , move the th row of to the row of , i.e. .

Changing gray distribution with a constant matrix : for , , do
(9) where .

Diffusion encryption: for , , set
(10) where ,
(11) and .


Repeation: Repeat the above four steps one more round.

Decryption procedure is similar to the encryption one except the following points: 1) the order of the above four main steps is reversed; 2) every operation in each main step is replaced by its inverse version.
The horizontal and vertical permutations on the plainimage controlled by and can be equivalently represented by a permutation matrix as [17], namely
(12) 
where , and .
[!htb](topskip=0pt, botskip=0pt, midskip=0pt)s1_e3_m2_d2_re_index3 The functional graph of 2DLASM with 6bit floatingpoint precision and round quantization, where the length of mantissa fraction is 3.
Iii Cryptanalysis
In [27], various aspects of IEAIE were analyzed to conclude that it owns superior security performance. However, we try to demonstrate that all the arguments are groundless.
Iiia Some security defects of IEAIE
In [24, 18], some rules and suggestions for designing secure and efficient image encryption schemes were concluded. Some concrete steps for evaluating security performances of a chaotic image encryption schemes were given in [25]. Unfortunately, IEAIE did not follow the lessons summarized in [24, 18, 25]. To attract the attention of designers of image encryption schemes on cryptanalysis, we check the security of every aspect of IEAIE and its test given in [27] as follows.

[topsep=0pt,parsep=0pt,partopsep=0pt,leftmargin=10pt,labelwidth=6pt,labelsep=4pt]

Underlying chaotic map:
In [6], a new twodimensional chaotic map 2DLASM was constructed by ‘adjusting’ Logistic map and Sine map with three strategies: cascading output of the former as the input of the latter; extending dimension of the phase plane from 1D to 2D; adopting one more multiplication variable with a constant delay parameter. It was proved that 2DLASM can demonstrate much more complex chaotic behaviors than the two original 1D maps [28]. As shown in Fig. 1, any orbit will definitely enter a cycle after a transient process. Rigorous theoretical analyses given in [29] prove that the functional graph of any digital chaotic map is highly correlated with that in a domain with arithmetic precision as small as 3. As shown in Figs. 1, 1, the cycle length of the functional graph of 2DLASM is very small for either arithmetic format. In [27], it was stated that “previously iterated values were discarded to avoid transient effects”. Actually, the differences between neighboring states change exponentially along an orbit of any iterated map, which is different from the case for chaotic flow. The real purpose of discarding some initial iterated values is to avoid recovering the control parameters of the corresponding chaotic map from them, which is demonstrated in [16]. As shown in [29], some cycles of short period (even selfloop) always exist no matter which enhancement method is adopted, e.g. increasing the arithmetic precision, perturbing states, perturbing the control parameters, switching among multiple chaotic maps, and cascading among multiple chaotic maps. If the initial state is located in a smallscale connected component or a cycle of short period in the functional graph of the used chaotic map, there are not enough available states (200 states specified in [27, Sec. 3.1]) to be discarded. So, an adaptive threshold should be set to avoid this problem. But, it would cost additional computation.

Key sensitivity:
In [27], “a small change of is shifted in keys , , , ” to check their influence on the decryption results. Although is small in itself as for our daily lives, the shift may cause a dramatic change of binary presentation of a number. Let’s illustrate this problem with arithmetic format binary32 (singleprecision floatingpoint format), where (stored as binary string “”). As for number (“”), (“”). It can be calculated that 11 bits among the 23 fraction bits (underlined parts) of the subtracted number are changed. So, the four cases given in [27, Fig. 4] are far not enough to convince us anything. Now, we can see that a small decimal number should not be used to measure the change degree of initial condition in a binary computer.
Observing Eq. (1), one can see that and are equivalent if 2DLASM is implemented in a fixedpoint arithmetic domain. Due to the modulo addition and division operation in Eq. (5), there may exist even much more equivalent secret keys. Besides these, quantization effects of the digital chaotic map may generate the same iteration orbit for different initial conditions (See Figs. 1, 1). So, the sensitivity of encryption results of IEAIE with respect to the change of its secret key is very weak.

Key space analysis:
In [27, Sec. 3.2.1], the precision of the secret key of IEAIE is fixed as . In digital world, the precision can only be precisely specified by a power of two. If a floatingpoint number format (binary32 or binary64) is adopted, the distances between neighboring representable numbers are not uniform, which requires setting the length of mantissa fraction, and that of exponent, elaborately [29]. As shown in Fig. 1 and [28], there exists a number of nonchaotic regions of . The initial conditions falling in such regions may compose invalid or weak secret keys. So, we can conclude that the specification of IEAIE seriously violates Rule 5 suggested in [24], “The key space , from which valid keys are to be chosen, should be precisely specified and avoid nonchaotic regions.” In addition, the computational complexity of checking each secret key and the valid time of the protected plainimage are not considered in [27]. In all, the statement “the bruteforce attack is impossible to successfully execute” is unconvincing.

Histogram:
In [27], it was emphasized that “the histogram of the cipherimage should be or near uniform and be different from that of the plainimage after encryption”. In fact, what counted for the security of IEAIE should be the matching degree between secretkey (or plainimage) and the histogram of the corresponding cipherimage. As shown in[19], an attacker can recover some statistical information of the plainimage by changing the counting objects of the histogram from pixel to bit. In addition, the spatial information of pixels may play a dominant role for the visual effect of the composed image. To show this point, Fig. 2 presents two images with the same flat (exactly uniform) histogram, whose number of pixels for each tonal value is . Figure 3 gives the encryption results of the two images shown in Fig. 2 with the position permutationonly scheme HCIE cryptanalyzed in [17]. Although histograms of the two encrypted images kept unchanged, the scheme is secure enough for some application scenario, e.g. surveillance and protection of payTV from illegal users. Anyway, the three histograms calculated in terms of pixel shown in [27, Fig. 5] are not far enough to prove “the proposed algorithm has a good ability to frustrate the attack” based on the histogram.

Variance of histogram:
To further measure the uniformity degree of a cipherimage, the variance of its histogram was calculated in [27]. Actually, the variance of a histogram cannot measure the number of different possible histograms generated by a tested encryption scheme. For example, the variances of two histograms “2, 2, 3, 4, 7” and “2, 2, 3, 5, 6” are different, but their number of different combinations are the same. But, the histogram variances of four cipherimages given in [27, Table 4] are far not sufficient to demonstrate existence of any rule. In addition, even some insecure encryption schemes can also make the obtained cipherimage own very low variance of histogram [30]. Moreover, visual security indexes of the three cipherimages shown in Fig. 3 are different, but the variances of the histogram of them are fixed to zero. In all, the statement “a lower variance represents higher uniformity” in [27] is not right.

Information entropy:
Information entropy is a quantitative metric measuring the disorder or randomness in a closed system. From Eq. (4), one can see that the entropy value of a message kept unchanged with respect to the following two kinds of changes: 1) permuting the position of every element within the message; 2) changing the elements of a given value as another one that does not exist in the message (if there is) [31]. In each case, the changes compose a bijection between specific domain and the corresponding codomain (See Fact 1). In all, there are a huge number of different images owning the same information entropy as a given image when its size is relatively large. For example, the five different images shown in Fig. 2, 3 share the same value of information entropy. Embedding Eq. (12) into Eq. (9), one can see that is determined by the two matrixes and for a given plainimage , where . From the definition of and , one can deduce that every column of should be of fixed value to assure that the modulo addition in Eq. (9) has the same effect on , namely every column of (the difference between and ), for different plainimages. To satisfy such condition, should hold. Even this, the statement “the value of the information entropy is very sensitive to the message” given in [27, Sec. 2.1] is still baseless. Note that the tiny differences of entropy given in [27, Table 7] are only bounded by 0.01 and the cipherimage of “Lenna” encrypted by the analyzed bitlevel permutationonly scheme cryptanalyzed in [5] can also reach as high as 7.978.
Fact 1
For any function , entropy function (Eq. (4)) satisfies that and the equality holds if and only if is a bijection.

Plaintext sensitivity:
Plaintext sensitivity is very important for highstrength image encryption schemes as a plainimage and its slightly modified version (embedded by a watermark or some hiding messages) are often encrypted at the same time. If the used encryption scheme does not satisfy the sensitivity requirement, leakage of the cipherimage corresponding to one of the two similar plainimage may disclose the visual information of the other. In the field of image security, two metrics UACI (unified averaged changed intensity) and NPCR (number of pixels changing rate) are widely used to measure plaintext sensitivity. Unfortunately, the validity of the two metrics has been questioned in [30] by statistical information of the outputs of some insecure encryption schemes. Here, we emphasize that the internal structure of IEAIE cannot perform well to achieve the expected plaintext sensitivity. Observing the encryption procedure of IEAIE, one can see that all involved operations can make every operated bit ‘run’ from the least significant bit (LSB) to the most significant bit (MSB), not the opposite order. Concretely, the change of a bit in the th bitplane (counted from the LSB to MSB) can only influence the bits in the th ones. So, the influence scope of every bit of the plaintext on the corresponding ciphertext is dramatically different. No matter how many round numbers are repeated, this problem remains to exist [32]. The designers of IEAIE claimed that “the keystreams are different with respect to different plainimages” based on the assumption of high sensitivity of information entropy on change of the plainimage. However, as we have explained above, this assumption is not correct. In all, the statement “a slight change in the plainimage leads to a completely different cipherimage” in [27, Sec. 3.2.2] is incorrect.

Coefficient correlation:
Just like most chaosbased image encryption schemes, [27] adopted the coefficient correlation of neighboring pixels of cipherimages encrypted by IEAIE to demonstrate its good security performance. As mentioned in [30, Fig. 3], there is “no clear (statistical) decision criterion for passing this test”. Furthermore, three insecure encryption schemes deliberately constructed in [30] can perform very well in terms of fulfilling the metric. Actually, this metric can be calculated only from image encryption schemes working in the spatial domain. Reasonable security index of image data should consider the characteristics of the human visual system and the distribution of compressing coefficients of image data [33].

Efficiency analysis:
The authors of [27] claimed that IEAIE is suitable for realtime secure communication by comparing it with the image encryption scheme proposed in [6]. In fact, the fast running speed of IEAIE comes from less computation operations, namely the obtained efficiency is built on sacrificing security instead of better structure. In Eqs. (5), (6), (8), (11), IEAIE uses integer conversion functions following the general form
(13) where and are positive integers, is a quantization function, e.g. ceil and round. In processors, multiplication by a constant is implemented using a sequence of bitwise shift and addition operations, e.g.
where
, and is the arithmetic precision. So the computational complexity of the conversion (13) is proportional to [19]. In Eqs. (5), (6), (8), (11), is set as 7 or 14. Only bits are useful for IEAIE, the computation spent on generating the other bits are wasted. Taking Eq. (8) as an example, the utilization percentage of the computation cost on iterating 2DLASM (1) is only . In addition, the test on speed analysis in [27] was performed in the idea laboratory environment instead of resourcelimiting real environments.
IiiB Differential cryptanalysis
As shown in Fig. 4, an attacker can arbitrarily choose some plaintexts, , and the corresponding ciphertexts, , encrypted by the same secret key in the scenario of chosenplaintext attack. As for differences between plaintexts and , , one can observe the corresponding differences between ciphertexts and , . The differences are defined in terms of an invertible operation used in the encryption scheme, e.g. bitwise OR and modulo subtraction. So differential cryptanalysis can be considered as a chosenplaintext attack on a weakened version of the analyzed encryption scheme for some differences selected from possible ones. In the broadest sense, differential cryptanalysis is a cryptanalytic method studying how particular differences in plaintext pairs affect the resultant differences, which is also called differential, of the corresponding ciphertext pairs. Considering the public structure of the analyzed encryption scheme, some basic parts can be deliberately canceled and the remaining part can be broken with much less resources. By repeating the process, the equivalent secret key of the whole encryption scheme can be recovered, which is then used to decrypt another ciphertext , encrypted by the same secret key.
From the above introduction of the chosenplaintext attack, one can see that the attack model relies on repeating usage of the secret key. So the designers of IEAIE use the information entropy of the plainimage to “affect the usage of the keystream and frustrate the chosenplaintext and knownplaintext attacks” in [27, Sec. 2.2]. However, based on the analysis on the insensitivity of information entropy in above subsection, it is very easy to construct some plainimages possessing the same keystream during the encryption process of IEAIE. Observing the encryption procedure of IEAIE, one can see that its real operations are solely determined by parameters, and . Note that even when two plainimages generate different entropy values in the encryption process, their corresponding key steams are still maybe the same due to the following reasons: 1) the modulo addition and division in Eq. (2) may make different sets of result in the same value of ; 2) the quantization error of calculating in computer may make different combinations of generate the same value of ; 3) Eq. (11) only extract bits of intermediate computing result of , and may output the same value of for different inputs of . Once the dependability mechanism of the key stream of IEAIE on the plainimage is concealed, the structure of Eq. (10) becomes the same as that of the main function of the image encryption scheme cryptanalyzed in [19]. Then, the differential cryptanalysis on IEAIE can be performed similarly.
Assume two plainimages and own the same set of and in the encryption process of IEAIE. As for their difference in terms of modulo subtraction , IEAIE is degenerated to
(14) 
where , , is the difference of the corresponding cipherimages of and in terms of the operator (some components in Eq. (10) are eliminated by the modulo subtraction), and . Observing Eq. (14), one can assure that
(15) 
if has only one nonzero element at entry , where is the entry of the first nonzero element in differential (counted in the scan order).
Based on the above analysis, the differential cryptanalysis on one round version of IEAIE can be described as follows.

Step 1: Choose two plainimages of size , and , satisfying
where are nonnegative integers and , , and denotes the cardinality of a set. Note that is initialized as .

Step 2: Let and pass through the encryption process of IEAIE with an unknown secret key and obtain the corresponding cipherimages, and .

Step 3: Get the value of via Eq. (15).

Step 4: Repeat the above procedure for (selected in the scan order of a matrix of size ) and get the value of . The value of can be identified as the sole unused location.
Observing Eq. (10), one can see that can work as the equivalent version of the secret key for decryption on the diffusion encryption part. In all, two matrixes and can work as the equivalent secret key of IEAIE.
A number of experiment were performed to verify performance of the above attacking steps. A concrete case of revealing the permutation relationship of IEAIE on a plainimage of size is shown in Fig. 5, where , , , and , and . In this case, the same set of and are generated for the two toy plainimages due to the quantization effect. From Fig. 5, we can see that the new permuted location of the sole nonzero element at entry in the differential plainimage can be observed by searching for the first different elements of the two cipherimages.
In [27], two rounds of the basic operations are suggested. Here, we skip the cryptanalysis of the full version of IEAIE based on the following considerations: 1) existence of the security defects presented in the above subsection is not related with the round number; 2) cryptanalysis of the two rounds of IEAIE involves very complex deduction and presentation; 3) the reported security defects of IEAIE are far enough to demonstrate that it cannot be fixed by simple modifications.
Iv Conclusion
This paper analyzed the security of a chaotic image encryption algorithm based on information entropy, IEAIE. The claimed superiorities of its structure are analyzed in detail and are found incorrect. Furthermore, every used security metric is incapable to testify real security performance. To design a secure and efficient multimedia encryption scheme, the related critical factors, e.g. the special properties of multimedia data, the concrete application scenario with specified constraints, computation load, should be considered comprehensively. Much cryptanalytic works need to be done to bridge the gap between the field of nonlinear dynamics and that of modern cryptography.
References
 [1] H. Li, K. Wang, X. Liu, Y. Sun, and S. Guo, “A selective privacypreserving approach for multimedia data,” IEEE MultiMedia, vol. 24, no. 4, pp. 14–25, 2017.
 [2] M. Du, K. Wang, Y. Chen, X. Wang, and Y. Sun, “Big data privacy preserving in multiaccess edge computing for heterogeneous internet of things,” IEEE Communications Magazine, vol. 56, no. 8, pp. 62–67, 2018.
 [3] X. Zhang, S.H. Seo, and C. Wang, “A lightweight encryption method for privacy protection in surveillance videos,” IEEE Access, vol. 6, pp. 18 074–18 087, 2018.
 [4] S. Chatterjee, S. Roy, A. K. Das, S. Chattopadhyay, N. Kumar, and A. V. Vasilakos, “Secure biometricbased authentication scheme using chebyshev chaotic map for multiserver environment,” IEEE Transactions on Dependable and Secure Computing, vol. 15, no. 5, pp. 824–839, 2018.
 [5] C. Li, D. Lin, and J. Lü, “Cryptanalyzing an imagescrambling encryption algorithm of pixel bits,” IEEE MultiMedia, vol. 3, pp. 64–71, 2017.
 [6] Z. Hua and Y. Zhou, “Image encryption using 2D logisticadjustedsine map,” Information Sciences, vol. 339, pp. 237–253, 2016.
 [7] Z. Hua, F. Jin, B. Xu, and H. Huang, “2D logisticsinecoupling map for image encryption,” Signal Processing, vol. 149, pp. 148–161, 2018.
 [8] Z. Lin, S. Yu, and J. Lü, “A novel approach for constructing oneway hash function based on a message block controlled 8D hyperchaotic map,” International Journal of Bifurcation and Chaos, vol. 27, no. 07, p. 1750106, 2017.
 [9] C. Zhu, “A novel image encryption scheme based on improved hyperchaotic sequences,” Optics Communications, vol. 285, no. 1, pp. 29–37, 2012.
 [10] Q. Shen and W. Liu, “A novel digital image encryption algorithm based on orbit variation of phase diagram,” International Journal of Bifurcation and Chaos, vol. 27, no. 13, p. Article number 1750204, DEC 15 2017.
 [11] A. Shakiba, M. R. Hooshmandasl, and M. A. Meybodi, “Cryptanalysis of multiplicative coupled cryptosystems based on the chebyshev polynomials,” International Journal of Bifurcation and Chaos, vol. 26, no. 07, p. 1650112, 2016.
 [12] M. H. Abd, F. R. Tahir, G. A. AlSuhail, and V.T. Pham, “An adaptive observer synchronization using chaotic timedelay system for secure communication,” Nonlinear Dynamics, vol. 90, no. 4, pp. 2583–2598, 2017.
 [13] L. Zhang, S. Zhu, and S. Tang, “Privacy protection for telecare medicine information systems using a chaotic mapbased threefactor authenticated key agreement scheme,” IEEE Journal of Biomedical and Health Informatics, vol. 21, no. 2, pp. 465–475, 2017.
 [14] X. Ge, B. Lu, F. Liu, and D. Gong, “An image encryption algorithm based on information hiding,” International Journal of Bifurcation and Chaos, vol. 26, no. 11, p. Article number 1650192, OCT 2016.
 [15] J. Sun, X. Liao, X. Chen, and S. Guo, “Privacyaware image encryption based on logistic map and data hiding,” International Journal of Bifurcation and Chaos, vol. 27, no. 5, p. Article number 1750073, MAY 2017.
 [16] C. Li, T. Xie, Q. Liu, and G. Cheng, “Cryptanalyzing image encryption using chaotic logistic map,” Nonlinear Dynamics, vol. 78, no. 2, pp. 1545–1551, 2014.
 [17] C. Li, “Cracking a hierarchical chaotic image encryption algorithm based on permutation,” Signal Processing, vol. 118, pp. 203–210, 2016.
 [18] S. Li, C. Li, G. Chen, and X. Mou, “Cryptanalysis of the RCES/RSES image encryption scheme,” Journal of Systems and Software, vol. 81, no. 7, pp. 1130–1143, 2008.
 [19] C. Li, D. Lin, J. Lü, and F. Hao, “Cryptanalyzing an image encryption algorithm based on autoblocking and electrocardiography,” IEEE MultiMedia, vol. 25, no. 4, 2018.
 [20] X. Ge, B. Lu, F. Liu, and X. Luo, “Cryptanalyzing an image encryption algorithm with compound chaotic stream cipher based on perturbation,” Nonlinear Dynamics, vol. 90, no. 2, pp. 1141–1150, 2017.
 [21] W.S. Yap, R. C.W. Phan, W.C. Yau, and S.H. Heng, “Cryptanalysis of a new image alternate encryption algorithm based on chaotic map,” Nonlinear Dynamics, vol. 80, no. 3, pp. 1483–1491, 2015.
 [22] Q. Wang, S. Yu, C. Li, J. Lü, X. Fang, C. Guyeux, and J. M. Bahi, “Theoretical design and FPGAbased implementation of higherdimensional digital chaotic systems,” IEEE Transactions on Circuits and Systems IRegular Papers, vol. 63, no. 3, pp. 401–412, 2016.
 [23] Y. Liu, Y. Luo, S. Song, L. Cao, and J. Liu, “Counteracting dynamical degradation of digital chaotic chebyshev map via perturbation,” International Journal of Bifurcation and Chaos, vol. 27, no. 3, p. art. no. 1750033, 2017.
 [24] G. Alvarez and S. Li, “Some basic cryptographic requirements for chaosbased cryptosystems,” International Journal of Bifurcation and Chaos, vol. 16, no. 8, pp. 2129–2151, AUG 2006.
 [25] F. Özkaynak, “Brief review on application of nonlinear dynamics in image encryption,” Nonlinear Dynamics, vol. 92, no. 2, pp. 305–313, 2018.
 [26] C. Zhu and K. Sun, “Cryptanalyzing and improving a novel color image encryption algorithm using RTenhanced chaotic tent maps,” IEEE Access, vol. 6, pp. 18 759–18 770, 2018.
 [27] G. Ye, C. Pan, X. Huang, Z. Zhao, and J. He, “A chaotic image encryption algorithm based on information entropy,” International Journal of Bifurcation and Chaos, vol. 28, no. 1, p. art. no. 1850010, 2018.
 [28] Z. Hua, B. Zhou, and Y. Zhou, “Sinetransformbased chaotic system with FPGA implementation,” IEEE Transactions on Industrial Electronics, vol. 65, no. 3, pp. 2557–2566, 2018.
 [29] C. Li, B. Feng, S. Li, J. Kurths, and G. Chen, “Dynamic analysis of chaotic maps as complex networks in the digital domain, arXiv:1410.7694,” 2017.
 [30] M. Preishuber, T. Hutter, S. Katzenbeisser, and A. Uhl, “Depreciating motivation and empirical security analysis of chaosbased image and video encryption,” IEEE Transactions on Information Forensics and Security, vol. 13, no. 9, pp. 2137–2150, 2018.
 [31] M. Madiman, A. W. Marcus, and P. Tetali, “Entropy and set cardinality inequalities for partitiondetermined functions,” Random Structures & Algorithms, vol. 40, no. 4, pp. 399–424, 2011.
 [32] E. Y. Xie, C. Li, S. Yu, and J. Lü, “On the cryptanalysis of Fridrich’s chaotic image encryption scheme,” Signal Processing, vol. 132, pp. 150–154, 2017.
 [33] T. Xiang, S. Guo, and X. Li, “Perceptual visual security index based on edge and texture similarities,” IEEE Transactions on Information Forensics and Security, vol. 11, no. 5, pp. 951–963, 2016.