SAT based analysis of LTE stream cipher ZUC

Lafitte, Frédéric; Markowitch, Olivier; Heule, Dirk Van

doi:10.1145/2523514.2523533

Cited by 7 publications

(4 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, with the exception of the Trivium and ZUC ciphers, the proposed chaos-based stream ciphers have competitive hardware performance when compared to most other chaotic and non-chaotic systems. Nevertheless, since 2007, several kinds of attacks have been launched against the eSTREAM cipher and ZUC stream cipher, revealing several vulnerabilities to cryptanalysis attacks [3,[41][42][43][44]. Note: Nowadays, promising new fractional chaotic functions have appeared, which seem very robust against cryptographic attacks.…”

Section: Correlation Analysismentioning

confidence: 99%

Design, Hardware Implementation on FPGA and Performance Analysis of Three Chaos-Based Stream Ciphers

et al. 2023

View full text Add to dashboard Cite

In this paper, we come up with three secure chaos-based stream ciphers, implemented on an FPGA board, for data confidentiality and integrity. To do so, first, we performed the statistical security and hardware metrics of certain discrete chaotic map models, such as the Logistic, Skew-Tent, PWLCM, 3D-Chebyshev map, and 32-bit LFSR, which are the main components of the proposed chaotic generators. Based on the performance analysis collected from the discrete chaotic maps, we then designed, implemented, and analyzed the performance of three proposed robust pseudo-random number generators of chaotic sequences (PRNGs-CS) and their corresponding stream ciphers. The proposed PRNGs-CS are based on the predefined coupling matrix M. The latter achieves a weak mixing of the chaotic maps and a chaotic multiplexing technique or XOR operator for the output function. Therefore, the randomness of the sequences generated is expanded as well as their lengths, and divide-and-conquer attacks on chaotic systems are avoided. In addition, the proposed PRNGs-CS contain polynomial mappings of at least degree 2 or 3 to make algebraic attacks very difficult. Various experimental results obtained and analysis of performance in opposition to different kinds of numerical and cryptographic attacks determine the high level of security and good hardware metrics achieved by the proposed chaos system. The proposed system outperformed the state-of-the-art works in terms of high-security level and a high throughput which can be considered an alternative to the standard methods.

show abstract

Section: Correlation Analysismentioning

confidence: 99%

Design, Hardware Implementation on FPGA and Performance Analysis of Three Chaos-Based Stream Ciphers

et al. 2023

View full text Add to dashboard Cite

show abstract

“…As soon as R1 or R2 can be chosen,weak states can be reached for reduced round versions, although the numberof satisfiable instances decreases as a function of the number of rounds. Theseweak state have no concern to the security feature of ZUC [6] [7].…”

Section: Guess-and-determine Attack[5]mentioning

confidence: 99%

Review on LTE Cryptography Algorithm ZUC and its Attacks

Lawange¹,

Narnaware²

2018

IJERMT

View full text Add to dashboard Cite

Abstract:ecurity is the important when it comes to wireless communication, and as the expectations of people increased, the data service now arrived at LTE. The faster data access and communication with high priority security. ZUC is the algorithm adopted to provide security under third set of LTE i.e. EEA3 and EIA3. The algorithms are used for confidentiality and integrity protection over the air. To analyze the security level of the algorithm different attacks were published in literature. The aim of this paper is to discuss the working of ZUC algorithm in detail. Also different attacks are listed in the last section.Keywords: LTE; ZUC; Cryptanalysis; SAT; Chosen IV; TMTO I. INTRODUCTIONThe data and voice communication happens over the air thus security algorithms were introduced. As the stream ciphers are computationally efficient, stream ciphers are preferred over block ciphers for security. For the GSM, A5 family of algorithms are used, for 3G KASUMI, SNOW 3G are used. As the algorithms were analyzed, the need for more efficient security algorithm is arrived. Cellular technology plays an important role in society, it becomes the primary source to the Internet for most of the population. The deployment of 4G LTE technology makes the data accessibility fast and still evolving. ZUC is a stream cipher based security algorithm designed by Data Assurance and Communication Security Research Center (DACAS) at Chinese Academy of Sciences. It is used in the confidentiality and integrity algorithm 128-EEA3 and 128-EIA3 [1] of 3GPP standard as their core component for 4G. LTE is the dominant over the air interface technology across the world.LTE security [12] involves authentication, confidentiality, hardware security and network security, however this report is mostly focused on software related security. The cryptographic algorithms used to secure the air interface and perform subscriber authentication functions were not publicly disclosed for the 2G GSM systems. The GSM makes uses of A3, A5, and A8 algorithm, A5 provides confidentiality, and A3 and A8 is for authentication. The UEA and UIA algorithms are used within UMTS for security. A 128-bit block cipher called KASUMI UEA1 is used for 3G security. UIA1 is a message authentication code based on KASUMI. UEA2 is a stream cipher related to SNOW 3G, and UIA2 computes a MAC using SNOW for authentication. In mobile communication networks, authentication refers to the process of determining whether a user is an authorized subscriber to the network that he/she is trying to access. Among various authentication procedures available in such networks, EPS AKA (Authentication and Key Agreement) procedure is used in LTE networks for mutual authentication between users and networks. The EPS AKA procedure consists of two steps.1. First, an HSS (Home Subscriber Server) generates EPS authentication vector(s) (RAND, AUTN, XRES, KASME) and delivers them to an MME. 2. Then in the second step, the MME selects one of the authentication vectors and uses it for mutual authentication with ...

show abstract

“…In [ZFL11], a differential trail covering 24 rounds of the initialization stage is given, but this does not pose a threat since ZUC has 32 initialization rounds. [LMVH15] also shows that weak inputs do not exist in ZUC when it is initialized with 32 rounds. These results indicate that ZUC is resistant against common attacks.…”

Section: Introductionmentioning

confidence: 97%

Spectral analysis of ZUC-256

Yang

Johansson

Maximov

2020

ToSC

View full text Add to dashboard Cite

In this paper we develop a number of generic techniques and algorithms in spectral analysis of large linear approximations for use in cryptanalysis. We apply the developed tools for cryptanalysis of ZUC-256 and give a distinguishing attack with complexity around 2236. Although the attack is only 220 times faster than exhaustive key search, the result indicates that ZUC-256 does not provide a source with full 256-bit entropy in the generated keystream, which would be expected from a 256-bit key. To the best of our knowledge, this is the first known academic attack on full ZUC-256 with a computational complexity that is below exhaustive key search.

show abstract

SAT based analysis of LTE stream cipher ZUC

Cited by 7 publications

References 15 publications

Design, Hardware Implementation on FPGA and Performance Analysis of Three Chaos-Based Stream Ciphers

Design, Hardware Implementation on FPGA and Performance Analysis of Three Chaos-Based Stream Ciphers

Review on LTE Cryptography Algorithm ZUC and its Attacks

Spectral analysis of ZUC-256

Contact Info

Product

Resources

About