On the security of nonlinear filter generators

Golić, Jovan Dj.

doi:10.1007/3-540-60865-6_52

Cited by 99 publications

(50 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In what follows, we discuss these attacks and show that none of them is a serious concern for our application. The inversion attacks of [14,15] rely on the public knowledge of the component LFSR structure and of the nonlinear filtering function (which in our AP protocol are the secrets of the tag), and can be foiled anyway by selecting a proper generator design. Another class of attacks, which also require complete knowledge of both the characteristic polynomial of the LFSR and the filtering function, are the algebraic attacks of [16].…”

Section: The Nonlinear Filter Generatormentioning

confidence: 99%

An Automatic, Time-Based, Secure Pairing Protocol for Passive RFID

Amariucai

Bergman

Guan

2012

RFID. Security and Privacy

View full text Add to dashboard Cite

Abstract. This paper introduces the Adopted-Pet (AP) protocol, an automatic (i.e. requiring no human interaction) secure pairing protocol, adequate for the pairing between a passive RFID tag and a reader. Most pairing protocols rely for their security on a certain advantage that the legitimate devices have over any malicious users. Such advantages include proximity (employing near-field communication) or secret keys that are either produced with the assistance of, or verified by, the legitimate user. The advantage exploited by our novel AP protocol is the amount of uninterrupted time spent by the two devices in the proximity (although not requiring near-field communication) of each-other. We discuss several implementation configurations, all based on pseudo-random bit generators, employing short-length LFSRs, and requiring no more than 2000 transistors. This makes the protocol ideally suited for low-cost passive RFID tags. For each configuration we show that the AP protocol is highly secure against occasional malicious entities.

show abstract

Section: The Nonlinear Filter Generatormentioning

confidence: 99%

An Automatic, Time-Based, Secure Pairing Protocol for Passive RFID

Amariucai

Bergman

Guan

2012

RFID. Security and Privacy

View full text Add to dashboard Cite

show abstract

“…However, the binary symmetric channel model which was originally described for combination generator does not hold anymore. The reason is that the inputs of the filtering function at different times are not independent, even if these dependences are usually reduced by an appropriate choice of the input taps (γ i ) 1≤i≤m [19]. In the case of filter generators, the underlying transmission channel is not memoryless.…”

Section: B Fast Correlation Attacks On Filter Generatorsmentioning

confidence: 99%

Fast correlation attacks against stream ciphers and related open problems

Canteaut

2005

IEEE Information Theory Workshop on Theory and Practice in Information-Theoretic Security, 2005.

View full text Add to dashboard Cite

show abstract

“…Another class of key recovery attacks on filter generators was proposed by Golić, the so-called inversion attacks, see [10,11,12]. In an inversion attack one tries to "invert" the nonlinear function and recover the initial state.…”

Section: Introductionmentioning

confidence: 99%

A New Simple Technique to Attack Filter Generators and Related Ciphers

Englund

Johansson

2004

Selected Areas in Cryptography

View full text Add to dashboard Cite

Abstract. This paper presents a new simple distinguishing attack that can be applied on stream ciphers constructed from filter generators or similar structures. We demonstrate the effectiveness by describing key recovery attacks on the stream cipher LILI-128. One attack on LILI-128 requires 2 47 bits of keystream and a computational complexity of roughly 253 . This is a significant improvement compared to other known attacks.

show abstract

On the security of nonlinear filter generators

Cited by 99 publications

References 22 publications

An Automatic, Time-Based, Secure Pairing Protocol for Passive RFID

An Automatic, Time-Based, Secure Pairing Protocol for Passive RFID

Fast correlation attacks against stream ciphers and related open problems

A New Simple Technique to Attack Filter Generators and Related Ciphers

Contact Info

Product

Resources

About