Related-Key Attacks on the Py-Family of Ciphers and an Approach to Repair the Weaknesses

Sekar, Gautham; Paul, Souradyuti; Preneel, Bart

doi:10.1007/978-3-540-77026-8_6

Cited by 12 publications

(8 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Related-key attack is wide range of applications in block cipher, but is rarely applied in stream cipher. The existing results are applied in RC4 and Py Series of stream ciphers [3,4]. In ACISP2008, Yuseop Lee et al [5] combined related-key attack with chosen IV attacks and applied this new attack on Grain v1 and Grain-128.…”

Section: Introductionmentioning

confidence: 97%

New Analysis on Security of Stream Cipher HC-256

Fei¹,

Zhang²,

Sun³

2013

2013 International Conference on Computational and Information Sciences

View full text Add to dashboard Cite

HC-256 proposed by Wu Hongjun at FSE 2004 is a software-efficient stream cipher algorithm based on table-driven, which is proposed as a final candidate to the eSTREAM project. In this paper, we modified the original version of HC-256 by removing the constant in the key expansion function, which we denoted HC-256*. Then we make a related-key security analysis on HC-256* and receive a conclusion that HC-256* is provable security under the related-key attack.

show abstract

Section: Introductionmentioning

confidence: 97%

New Analysis on Security of Stream Cipher HC-256

Fei¹,

Zhang²,

Sun³

2013

2013 International Conference on Computational and Information Sciences

View full text Add to dashboard Cite

show abstract

“…Application of related-key attacks to stream ciphers was not very common in the literature, mainly due to the heavy operations executed in one-time key-scheduling algorithms com- pared to the operations performed in iterative block ciphers, see [7]. However, there is a growing tendency by cryptanalysts nowadays to attack stream ciphers using related key attacks.…”

Section: Introductionmentioning

confidence: 97%

“…However, there is a growing tendency by cryptanalysts nowadays to attack stream ciphers using related key attacks. Sekar, Paul and Preneel [7] presented related-key weaknesses in the Py-family of ciphers including the strongest member TPypy. The result had been improved significantly by Ding and Guan in [8].…”

Section: Introductionmentioning

confidence: 98%

Related Key Chosen IV Attack on Grain-128a Stream Cipher

Ding

Guan

2013

IEEE Trans.Inform.Forensic Secur.

View full text Add to dashboard Cite

The well-known stream cipher Grain-128 is a variant version of Grain v1 with 128-bit secret key. Grain v1 is a stream cipher which has successfully been chosen as one of seven finalists by European eSTREAM project. Yet Grain-128 is vulnerable against some recently introduced attacks. A new version of Grain-128 with authentication, named Grain-128a, is proposed by Ågren, Hell, Johansson, and Meier. The designers claimed that Grain-128a is strengthened against all known attacks and observations on the original Grain-128. So far there exists no attack on Grain-128a except a differential fault attack by Banik, Maitra, and Sarkar. In this paper, we give some observations on Grain-128a, and then propose a related key chosen IV attack on Grain-128a based on these observations. Our attack can recover the 128-bit secret key of Grain-128a with a computational complexity of , requiring chosen IVs and keystream bits. The success probability of our attack is 0.632. This related key attack is "minimal" in the sense that it only requires two related keys. The result shows that our attack is much better than an exhaustive key search in the related key setting.

show abstract

“…It transforms a 16-byte master key into an 8-byte block of output at a time. The main cryptanalytic result [8] obtained on TWOPRIME so far is the analysis 1 In the literature, there have been several examples of the application for the related-key attack on stream ciphers [15,41], however, no general framework of related-key attack on stream ciphers has been published. exploiting structural weaknesses of TWOPRIME.…”

Section: Introductionmentioning

confidence: 99%

Cryptanalysis of block-wise stream ciphers suitable for the protection of multimedia and ubiquitous systems

et al. 2010

View full text Add to dashboard Cite

In this paper we introduce a general framework of related-key attack on block-wise stream ciphers which are suitable for the protection of multimedia and ubiquitous systems. As a case study, we show how our cryptanalytic framework is applied to a block-wise stream cipher TWOPRIME: we construct various related-key differentials of TWOPRIME and use them to show that recovering related keys of TWOPRIME can be performed with a data complexity of 2 14 known plaintext blocks and a time complexity of 2 32 8-bit table lookups. We expect that our general framework for a related-key attack would be useful tool for analyzing many of block-wise stream ciphers.

show abstract

Related-Key Attacks on the Py-Family of Ciphers and an Approach to Repair the Weaknesses

Cited by 12 publications

References 23 publications

New Analysis on Security of Stream Cipher HC-256

New Analysis on Security of Stream Cipher HC-256

Related Key Chosen IV Attack on Grain-128a Stream Cipher

Cryptanalysis of block-wise stream ciphers suitable for the protection of multimedia and ubiquitous systems

Contact Info

Product

Resources

About