Jing Lv,Bin Zhang,Dongdai Lin

2013-01-01

Abstract:RC4, designed by Rivest in 1987, is the most widely deployed stream cipher in practical applications. In this paper, two new class of statistical biases inherent in RC4 are depicted and it is shown that the RC4 keystream is distinguishable from random no matter how many initial bytes have been dumped. RC4A, proposed by Paul and Preneel at FSE 2004 to strengthen the security of RC4, is also found to be vulnerable to similar attacks. Instead, a new pseudorandom bit generator RC4B is proposed, which is believed to provide better immunity against the known attacks.

Fanping Zeng

2008-01-01

Abstract:When used in application, RC4 cipher technology has some problems, such as weak keys and related key attacks, invariance weakness,,byte bias and so on.This paper presents an improved RC4 cipher technology, which combines the ECC cipher and the RC4 stream cipher.Theemphasis is analyzing the efficiency, the management of keys, and the capability of the improved RC4 cipher.The result indicates that the efficiencyof the improved RC4 is just a litter lower than RC4 stream cipher while the security is much better than RC4.It has good repellency of the currentattacks which aim at RC4 stream cipher.What is more, the improved RC4 cipher has a good way to solve the problems about key management andkey update, which is very significant in application.

胡亮,迟令,袁巍,初剑峰,徐小博

2012-01-01

Abstract:The Fault Induction Attack（FIA） proposed by Adi Shamir is an effective method in cracking RC4 algorithm.The target of the FIA is the Pseudo-Random Generation（PGR） phase of the RC4 algorithm.To resist this attack,it is necessary to enhance the security of the PGR phase.This paper presents two improvements that make the nonlinear transformation more complex by adding the row shift and column shift to the PGR phase.After analyzing the validity,security and the efficiency of the FIA,it is demonstrated that the efficiency of using FIA is lower than using exhaustive attack,which means that the improvements could resist FIA.Comparison of the two improvements shows that the first improvement is more efficient and the second improvement is more secure.

SHA Pei-dong,ZHU Zhi-xiang

DOI: https://doi.org/10.3969/j.issn.1008-5564.2013.04.011

2013-01-01

Abstract:Based on the Advanced Encryption Standard(AES)cipher algorithm,this essay proposes an improved differential fault analysis attack.This algorithm induced the faults in encryption to derive the relationship between the original cipher text and the cipher text after the importation of the fault to recover the secret key and reduce the complexity of a brute force attack.Compared with the traditional differential fault analysis(DFA)attack algorithm against AES-128,this method has better scalability and can realize the attack against AES-192 and AES-256 after appropriate adjustments to the parameters of the specific derivation process.

XIE Qi,CHEN De-ren,YU Xiu-yuan

IF: 2.034

2010-01-01

Systems Engineering

Abstract:In 2009, Park, et al. proposed an efficient remote user authentication protocol. They claimed that their protocol was the first password and smart card based remote user authentication scheme which can resist the off-line password guessing attack, and had many advantages over existing solutions such as no password tables and timestamp, low communication and computational costs. However, this paper shows that their protocol cannot resist the forgery attack and off-line password guessing attack. To overcome the security weaknesses, two improved schemes based on either nonce or timestamp without affecting the merits of the Park, et al. scheme are proposed. Technical discussions are provided to show that the improved protocol is secure, efficient and practical.

Seifedine Kadry,Mohamad Smaili

DOI: https://doi.org/10.48550/arXiv.1111.5641

2011-11-23

Cryptography and Security

Abstract:This paper develops a new algorithm to improve the security of RC4. Given that RC4 cipher is widely used in the wireless communication and has some weaknesses in the security of RC4 cipher, our idea is based on the combination of the RC4 and the poly alphabetic cipher Vigen\`ere to give a new and more secure algorithm which we called VRC4. In this technique the plain text is encrypted using the classic RC4 cipher then re-encrypt the resulted cipher text using Vigen\`ere cipher to be a more secure cipher text. For simplicity, we have implemented our new algorithm in Java Script taking into consideration two factors: improvement of the security and the time complexity. To show the performance of the new algorithm, we have used the well known network cracking software KisMac.

Jing Lv,Bin Zhang,Dongdai Lin

DOI: https://doi.org/10.1007/978-3-319-05149-9_2

2013-01-01

Abstract:In FSE 2011, Maitra and Paul observed that there exists negative bias in the first byte of the RC4 keystream towards 0. In this paper, we give our theoretical proof of this bias. This bias immediately provide distinguisher for RC4, and ciphertext only attack on broadcast RC4. Additionally, we discover some new weaknesses of the keystream bytes even after the first <InlineEquation ID=\"IEq1\" <EquationSource Format=\"TEX\"$$N$$</EquationSource> <EquationSource Format=\"MATHML\" <math xmlns:xlink=\"http://www.w3.org/1999/xlink\" <mi>N</mi> </math> </EquationSource> </InlineEquation> rounds of the PRGA, where <InlineEquation ID=\"IEq2\" <EquationSource Format=\"TEX\"$$N$$</EquationSource> <EquationSource Format=\"MATHML\" <math xmlns:xlink=\"http://www.w3.org/1999/xlink\" <mi>N</mi> </math> </EquationSource> </InlineEquation> is the size of the RC4 permutation, generally, <InlineEquation ID=\"IEq3\" <EquationSource Format=\"TEX\"$$N=256$$</EquationSource> <EquationSource Format=\"MATHML\" <math xmlns:xlink=\"http://www.w3.org/1999/xlink\" <mrow> <mi>N</mi> <mo>=</mo> <mn>256</mn> </mrow> </math> </EquationSource> </InlineEquation>. The weaknesses in turn provide us with certain state information from the keystream bytes no matter how many initial bytes are thrown away.

YUAN Wei,ZHANG Yun-ying,HU Liang,LI Hong-tu,WANG Cheng-ming

DOI: https://doi.org/10.3969/j.issn.1671-5896.2008.05.009

2008-01-01

Abstract:For improving the safety properties of Rijndael algorithm,the use of each stage and the new feature of merged stages are summarized for Rijndael algorithm.By analyzing of differential attack and square we get the result that differential attack is useless to Rijndael but square can effectively attack Rijndael.The two conditions that square can success are the change of balance of Rijndael and the reversibility among each round of sub-key.Improved key generation algorithm eliminates the reversibility of sub-key and makes square invalid.Therefore the result and the safety properties of the algorithm are improved.

HUANG Jing,ZHAO Xin-jie,ZHANG Fan,GUO Shi-ze,ZHOU Ping,CHEN Hao,YANG Jian

DOI: https://doi.org/10.11959/j.issn.1000-436x.2016165

2016-01-01

Abstract:An enhanced algebraic fault analysis on PRESENT was proposed.Algebraic cryptanalysis was introduced to build the algebraic equations for both the target cipher and faults.The equation set of PRESENT was built reversely in order to accelerate the solving speed.An algorithm of estimating the reduced key entropy for given amount of fault injec-tions was proposed,which can evaluate the resistance of PRESENT against fault attacks under different fault models.Fi-nally,extensive glitch-based fault attacks were conducted on an 8-bit smart card PRESENT implemented on a smart card.The best results show that only one fault injection was required for the key recovery,this is the best result of fault attacks on PRESENT in terms of the data complexity.

Tianjie Cao,Yong Zhang

2009-01-01

Journal of Computational Information Systems

Abstract:Three effective attacks, namely impersonation attack, de-synchronization attack and backward tracing attack, against Song and Mitchell's RFID authentication scheme are identified in this paper. The impersonation attack can spoof the reader though a replay attack. The de-synchronization attack can break the synchronization between the RFID reader and the tag so that they can not authenticate each other in any following protocol runs. The backward tracing attack can identify the past interactions of a tag if the attacker knows the tag's present internal stat e. An improved RFID scheme resistant to these attacks is also proposed. © 2009 Binary Information Press August, 2009.

HE Ke-jing

2009-01-01

Abstract:According to the open information from the Microsoft official documents, the OpenOffice documents and the wvWare project, this paper studies the RC4 stream cipher and its implementation in the Office 97～2003.The analysis discovers that the default 40 bit encryption method used by Office 97-2003 is very weak and insecure.Coupling rainbow precomputation attack, the encryption can be broken in 1 min～2 min.This paper suggests users do not rely on the default 40 bit"Office 97/2000 Compatible"encryption to protect your confidential information.On the contrary, the 128 bit"Microsoft Enhanced Cryptographic Provider"is preferred.It also recommends that users adopt the stronger encryption algorithm provided by compression softwares better when better security is necessary.

Qing ZHOU,Yue HU,Xiao-Feng LIAO

DOI: https://doi.org/10.3321/j.issn:0372-2112.2009.12.023

2009-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:Recently, Chen etc. proposed a novel self-adaptive image encryption algorithm. The analysis shows that it is vul-nerable to chosen plaintext attack. Then the original algorithm is revised based on self-adaptive image encryptoin technique. The ex-periments show that the revised algorithm has better performance on both security and speed than two known algorithms.

蒋惠萍,毛志刚

DOI: https://doi.org/10.3321/j.issn:0367-6234.2004.12.031

2004-01-01

Abstract:Side channel information could be used to analysis the key information according to leakage information depending on the operation of cryptography algorithm and its hardware. Fault analysis (Bellcore-Lenstra) and power analysis are the chief attack methods. Because of high effectiveness with low cost, the problem of side channel information attacks during the design of RSA-CRT cryptography coprocessor should be think better. In order to maximize the cost perforance, MASK and removing intermediate value technique are introduced into RSA-CRT, which cost only more 30% timing to realize secure RSA-CRT algorithm. Contemporary the effectiveness of advanced RSA-CRT is illuminated briefly.

Yi'an Liu,Yili Liu,Shuang Liu,Guo Li,Yang Liu

DOI: https://doi.org/10.1109/icetci55101.2022.9832355

2022-01-01

Abstract:This paper proposes an algorithm based on memristive neural network to realize Rivest Cipher 4 (RC4) encryption, which effectively releases the correlation between the input key and the output key stream of the RC4 algorithm. At the same time, this design improves both Key Schedule Algorithm (KSA) and Pseudo Random Generation Algorithm (PRGA) of RC4 stream cipher. In the KSA process, a neural network with chaos is constructed by utilizing the non-linearity characteristics of the memristor, and the generated chaotic sequence having good randomness performance, is used as the input key of the RC4 algorithm to realize “one time one secret” dynamic encryption. In the PRGA process, another sequence generated randomly by memristive neural network is used for a dynamic chaotic permutation on the data table of the S-box. Experiment results demonstrate the effectiveness of the algorithm, and show it has larger key space, higher security and stronger robustness than the traditional algorithm.

SJ Li,XQ Mou,YL Cai

DOI: https://doi.org/10.1016/s0375-9601(01)00612-0

IF: 2.707

2001-01-01

Physics Letters A

Abstract:E. Alvarez et al. presented a new chaotic encryption approach recently. But soon G. Alvarez et al. broke it with four cryptanalytic methods and found some other weaknesses. In this Letter we point out why the original scheme is so vulnerable to the proposed four attacks. The chief reasons are two essential defects existing in the original scheme. Based on such a fact, we present an improved encryption scheme to obtain higher security. The cryptographic properties of the improved scheme are studied theoretically and experimentally in detail.

Ming XU,Jing YING,Chun CHEN

DOI: https://doi.org/10.3321/j.issn:1008-9209.2000.06.025

2000-01-01

Abstract:Digital signature and fault tolerance are two important issues in modern computer network communication. In most case, they are addressed and implemented separately. Recently, Chang proposed an integrated approach for both fault tolerance and digital signature in RSA, which can implement fault tolerance in processes of encrypting, transmission, decrypting and authentication. In this paper, we analyze some security faults which exist in Chang cryptography scheme. Then we propose an approach, which can be used to attack Chang scheme. Finally, we propose an improved Chang cryptography scheme, which provides perfect cryptography, fault tolerance, impossibility of being interpolated, impossibility of being retransmitted, and so on. The improved scheme embodies a new way of thinking for public key cryptography by integrated approach for fault tolerance and digital signature in RSA.

LI Heng,GAO Fei,XUE Yan-ming,FENG Shuo

DOI: https://doi.org/10.3969/j.issn.2095-6835.2010.32.051

2010-01-01

Abstract:The wireless transmission characteristics of RFID system is vulnerable to be attacked and theft within communication,to people adopt the physical methods and authentication encryption methods to enhance system security,authentication encryption methods is more useful due to its simple design.In this paper,we analysis of security vulnerabilities exist in the commonly used authentication protocol based on Hash function,on this basis bring forward a modified protocol.Through compare them in security,data storage condition and complexity of the algorithm,it can prove that the improved protocol has a very good improvement for RFID system’s overall performance,particularly in security.

耿嘉,曹秀英,毕光国

DOI: https://doi.org/10.3321/j.issn:1000-436x.2004.01.002

2004-01-01

Abstract:A practical method of cracking RC4-based protocol just like WEP with the PRGAs second output byte is given in detail. When this method is used together with the basic IV Weakness, and optimized by the decision method of how many ciphertext frames are need to be captured, the performance of this new attack can be improved evidently, and the attack becomes more practical. The principle of this attack is explained, and the simulation results are given.

Baoyuan Kang,Jinguang Han,Qingju Wang

DOI: https://doi.org/10.1109/ICCET.2010.5486299

2010-01-01

Abstract:Wang et al. presented a remote password authentication scheme using IC (integrated Circuit)cards in 2004. Recently, Cheng et al. pointed that the Wang et al.'s scheme is unable to withstand the forgery attack. They consequently proposed a novel version to resist the forgery attack. Although Cheng et al. claimed that their scheme is secure against all known attacks and more practical in application than other IC-card-based authentication schemes, in this paper, we show that Cheng et al. scheme is vulnerable to the guessing attack, parallel session attack and key-compromise attack. To remedy these flaws, this paper proposes an improvement over Cheng et al. scheme with more security.

Jing Lv,Dongdai Lin

2013-01-01

Abstract:The stream cipher RC4 was designed by R.Rivest in 1987, and it is a widely deployed cipher. Many predictive states of RC4 for some special indices i were presented in the last 20 years. In this paper, we present several long term predictive states. These states increase the probability to guess part of the internal state in a known plaintext attack and present a cryptanalytic weakness of RC4. This paper also analyzes possible long term bias in the keystream and further propose a search method for the long term predictive states.