Jing Lv,Bin Zhang,Dongdai Lin

DOI: https://doi.org/10.1007/978-3-319-05149-9_2

2013-01-01

Abstract:In FSE 2011, Maitra and Paul observed that there exists negative bias in the first byte of the RC4 keystream towards 0. In this paper, we give our theoretical proof of this bias. This bias immediately provide distinguisher for RC4, and ciphertext only attack on broadcast RC4. Additionally, we discover some new weaknesses of the keystream bytes even after the first <InlineEquation ID=\"IEq1\" <EquationSource Format=\"TEX\"$$N$$</EquationSource> <EquationSource Format=\"MATHML\" <math xmlns:xlink=\"http://www.w3.org/1999/xlink\" <mi>N</mi> </math> </EquationSource> </InlineEquation> rounds of the PRGA, where <InlineEquation ID=\"IEq2\" <EquationSource Format=\"TEX\"$$N$$</EquationSource> <EquationSource Format=\"MATHML\" <math xmlns:xlink=\"http://www.w3.org/1999/xlink\" <mi>N</mi> </math> </EquationSource> </InlineEquation> is the size of the RC4 permutation, generally, <InlineEquation ID=\"IEq3\" <EquationSource Format=\"TEX\"$$N=256$$</EquationSource> <EquationSource Format=\"MATHML\" <math xmlns:xlink=\"http://www.w3.org/1999/xlink\" <mrow> <mi>N</mi> <mo>=</mo> <mn>256</mn> </mrow> </math> </EquationSource> </InlineEquation>. The weaknesses in turn provide us with certain state information from the keystream bytes no matter how many initial bytes are thrown away.

Jing Lv,Bin Zhang,Dongdai Lin

2013-01-01

Abstract:RC4, designed by Rivest in 1987, is the most widely deployed stream cipher in practical applications. In this paper, two new class of statistical biases inherent in RC4 are depicted and it is shown that the RC4 keystream is distinguishable from random no matter how many initial bytes have been dumped. RC4A, proposed by Paul and Preneel at FSE 2004 to strengthen the security of RC4, is also found to be vulnerable to similar attacks. Instead, a new pseudorandom bit generator RC4B is proposed, which is believed to provide better immunity against the known attacks.

Fanping Zeng

2008-01-01

Abstract:When used in application, RC4 cipher technology has some problems, such as weak keys and related key attacks, invariance weakness,,byte bias and so on.This paper presents an improved RC4 cipher technology, which combines the ECC cipher and the RC4 stream cipher.Theemphasis is analyzing the efficiency, the management of keys, and the capability of the improved RC4 cipher.The result indicates that the efficiencyof the improved RC4 is just a litter lower than RC4 stream cipher while the security is much better than RC4.It has good repellency of the currentattacks which aim at RC4 stream cipher.What is more, the improved RC4 cipher has a good way to solve the problems about key management andkey update, which is very significant in application.

Yanling Xing,Yukui Pei,Ning Ge

DOI: https://doi.org/10.1109/ICCT.2012.6511371

2012-01-01

Abstract:As the first practical fountain code, LT (Luby Transform) code is the basis of other fountain codes. In theory, for each encoding symbol of LT code, the neighbors used to generate that encoding symbol are chosen uniformly at random. Practical implementations of LT codes usually realize the randomness through pseudo-randomness number generators like LCG (Linear Congruential Generator). In this paper, an LT code design based on RC4 sequential cipher is proposed, which we called RC4-LT code. In RC4-LT code, the traditional linear congruential method is replaced with RC4 sequential cipher to generate random number stream, and a scrambling degree neighbor generation algorithm is proposed. Moreover, we exploit the cryptographic properties of RC4 algorithm to implement secure data transmission. Simulation results show that, RC4-LT code has more efficient decoding performance, smaller transmission overhead and necessary security compared with the conventional LT code.

HU Liang,CHI Ling,YUAN Wei,LI Hong-tu,CHU Jian-feng

DOI: https://doi.org/10.13413/j.cnki.jdxblxb.2012.03.011

2012-01-01

Abstract:Based on security risks for RC4 algorithm,we presented some improvements.The improved algorithm can resist the fault induction attack via adding the self-error detection phase,and resist Knudsen's attack via adding the byte conversion phase.After analyzing the security of the improved algorithm,we proved that the improved algorithm can resist the fault induction attack and Knudsen's attack validly,the security of the RC4 algorithm is hence enhanced.

Chenpeng Xue,Ning Jiang,Xiaoyan Zhao,Anke Zhao,Yanhua Hong,Qiu Kun

DOI: https://doi.org/10.1364/cleopr.2018.f2d.2

2018-01-01

Abstract:We propose a new stream-cipher generation scheme based on the correlated physical random bit generation with synchronized chaotic lasers and pseudo-random bit extension RC4 algorithm. The proposed scheme shows high-security, extensible rate and strong robustness.

Bo Qu,Dawu Gu,Zheng Guo,Junrong Liu

DOI: https://doi.org/10.1016/j.camwa.2012.02.024

IF: 3.218

2012-01-01

Computers & Mathematics with Applications

Abstract:Side-channel attacks on block ciphers and public key algorithms have been discussed extensively, but only a few systematic studies on the applicability of side-channel attacks to stream ciphers could be found. The objective of the present study is to develop general differential power analysis techniques which can be employed to attack the stream ciphers with linear feedback shift registers. To illustrate the new approach, a common structure of a stream cipher with the basic components is given. Then the approach is employed to analyze the given structure. The results show that the linear feedback shift registers may leak the information of the secret key. The approach is also applied to Crypto-1 and the experimental results show that it is very effective. 28-bit information of the 48-bit secret key can be obtained just by analyzing some power traces. Furthermore, the present work may be helpful in analyzing a variety of stream ciphers with LFSRs.

Zhuosheng Lin,Simin Yu,Xiutao Feng,Jinhu Lu

DOI: https://doi.org/10.1142/s0218127418500864

2018-01-01

Abstract:In this paper, the security performance for an 8D self-synchronous and feedback-based chaotic stream cipher with the low 8 bits of state variables for encryption is analyzed. According to known-plaintext attack and divide-and-conquer attack, only the second plain-pixel and its corresponding cipher-pixel are required to decipher the secret keys [Formula: see text] [Formula: see text] by properly setting 64 different kinds of initial conditions. Then, according to chosen-ciphertext attack and divide-and-conquer attack, it is found that under the condition of selecting the ciphertext as zero, the original chaotic equation is degenerated as a linear one. So, by setting appropriate initial conditions, the secret keys [Formula: see text] [Formula: see text] can be deciphered with only four iterative operations. As for the secret keys [Formula: see text] [Formula: see text] multiplied by ciphertext and the secret keys [Formula: see text] [Formula: see text] related to nonlinear functions, maybe a more powerful attack method is required for these secret keys to be deciphered. Finally, an improved chaotic stream cipher scheme equipped with the low 8 bits derived from nonlinear operation of multiple state variables for encryption is proposed for improving the ability to resist divide-and-conquer attack and chosen-ciphertext attack.

Huafei Zhu,Lixin Ran,Yumin Wang

IF: 1.019

1999-01-01

Chinese Journal of Electronics

Abstract:Cryptographic hash functions are very important for cryptographic protocols such as signature scheme and message authentication. Based on the pioneer work of X. Lai et al., a new framework of hash algorithm is developed in this paper. In our hash scheme, an extra pseudorandom keystream generator is not needed which may be more conveniently for practical use. We have proved that the security of the new hash scheme is equivalent to that of feedback shift registers (FSRs) controlled by 2m - bit security keys.

Wang Zhao

DOI: https://doi.org/10.3969/j.issn.1674-9456.2010.09.024

2010-01-01

Abstract:It's difficult to understand RC4 in the teaching process of RC4 stream cipher algorithm,based on the analysis of RC4 algorithm,a teaching model and procedure about RC4 is proposed based on pattern of dreamy balls from the pack.Teaching courses in cryptography has made good effect.

Xiaojing Hu,Lizhao Liu,Ying Wang,Maoqing Li,Tianhua Zhang

DOI: https://doi.org/10.4304/jsw.6.10.1961-1968

2011-01-01

Abstract:To solve the problem of traditional stream ciphers can not transmit through the public channel and the construction of high-strength cipher key generator, the paper presents the minimum power clock function driven by a parallel clock-control sequence and chaotic cascade function made of multiple Logistic function, which are used to built the self-reference model and chaotic module; it designs an adapt controller independent of the key generator and encrypt module, achieve controlling encryption and transmission process by multi-threaded code; it makes a high-strength key generator with sure differential transformation and pseudo-random horizontal level disturbance wheel key method of AES and S-box of Camellia, which makes the sub-key and the key generator's internal station become vogue and uncertain within controlled area that does not depend on the secret channel, the model achieves an exponential growth in the key space and the same application scope of traditional stream cipher model. The new protocol model features can be seen under the actual operation of modifying RC4 and real-time RC5 algorithm.

Yi'an Liu,Yili Liu,Shuang Liu,Guo Li,Yang Liu

DOI: https://doi.org/10.1109/icetci55101.2022.9832355

2022-01-01

Abstract:This paper proposes an algorithm based on memristive neural network to realize Rivest Cipher 4 (RC4) encryption, which effectively releases the correlation between the input key and the output key stream of the RC4 algorithm. At the same time, this design improves both Key Schedule Algorithm (KSA) and Pseudo Random Generation Algorithm (PRGA) of RC4 stream cipher. In the KSA process, a neural network with chaos is constructed by utilizing the non-linearity characteristics of the memristor, and the generated chaotic sequence having good randomness performance, is used as the input key of the RC4 algorithm to realize “one time one secret” dynamic encryption. In the PRGA process, another sequence generated randomly by memristive neural network is used for a dynamic chaotic permutation on the data table of the S-box. Experiment results demonstrate the effectiveness of the algorithm, and show it has larger key space, higher security and stronger robustness than the traditional algorithm.

Shivam Bhasin,Jingyu Pan,Fan Zhang

2018-01-01

Abstract:This works gives an overview of persistent fault attacks on block ciphers, a recently introduced fault analysis technique based on persistent faults. The fault typically targets stored constant of cryptographic algorithms over several encryption calls with a single injection. The underlying analysis technique statistically recovers the secret key and is capable of defeating several popular countermeasures by design.

HE Ke-jing

2009-01-01

Abstract:According to the open information from the Microsoft official documents, the OpenOffice documents and the wvWare project, this paper studies the RC4 stream cipher and its implementation in the Office 97～2003.The analysis discovers that the default 40 bit encryption method used by Office 97-2003 is very weak and insecure.Coupling rainbow precomputation attack, the encryption can be broken in 1 min～2 min.This paper suggests users do not rely on the default 40 bit"Office 97/2000 Compatible"encryption to protect your confidential information.On the contrary, the 128 bit"Microsoft Enhanced Cryptographic Provider"is preferred.It also recommends that users adopt the stronger encryption algorithm provided by compression softwares better when better security is necessary.

Wei-ling Chang,Binxing Fang,Xiao-chun Yun,Shupeng Wang,Xiang-Zhan Yu

DOI: https://doi.org/10.1109/DCC.2010.77

2010-01-01

Abstract:A pseudo-random sequence generator (PRNG), L12RC4, inspired by the LZSS compression algorithm and RC4 stream cipher, was presented and implemented. The result of the NIST and Diehard test suite indicate that the L12RC4 is a good PRNG, and so it seems to be sound and may be suitable for use in some cryptographic applications. We also found that the probability distribution of the index value frequency is associated with the compression pass and INDEX_BIT_COUNT value. As for one pass mode, the greater INDEX_BIT_COUNT value, the more uniformly distributed, and the double pass mode has better uniformity than the one pass mode.

陈一阳,陈恭亮

DOI: https://doi.org/10.3969/j.issn.1009-8054.2010.06.041

2010-01-01

Abstract:The design and analysis of stream cipher plays an important role in modern cryptology.This paper briefly reviews the basic principle and model of stream cipher analysis,mainly including TMD tradeoff attack,guess-and-determine attack,correlation attack,BAA attack,algebraic attack and side-channel attack.Then simulations of TMD tradeoff attack,guess-and-determine attack and correlation attack are performed by using Mathematical kit software,with results and a part of codes appended.The tests reveal an important design principle:it is critical to avoid the linear evolvement of internal state and eliminate the biased statistical properties of keystream.Finally some conclusions and prospects of stream cipher analysis are provided.

蒋超,陈恭亮

DOI: https://doi.org/10.3969/j.issn.1009-8054.2009.05.057

2009-01-01

Abstract:In this paper, we reveal a restructuring method which might change the explicit complex structures or partof the structures in the algorithm into the framework of Feistel. By this method, we can change several algorithms inthe Program of eStream into Feistel Structure, and we hope this will reveal new attacking method for the cryptanalysis.

li zhao liu,xiao jing hu,tian hua zhang,ying wang,mao qing li

DOI: https://doi.org/10.4028/www.scientific.net/AMR.143-144.298

2011-01-01

Abstract:To solve the problem of construction for stream cipher key generator and the problem of SSC/SSSC stream ciphers need to relay on the secret channel to transmit the key, it presents a new clock function drive by a clock-control sequence and chaotic cascade function made of multiple Logistic function, which are used to built the self-reference model and chaotic module;it design a adapt controller independent of the key generator and encrypt module, achieve controlling encryption and transmission process by multi-threaded code;it makes a key generator with transformation ranks and wheel key method of AES and S-box of Camellia, which makes the sub-key and the key generator's internal station become a insufficient condition that does not need to depend on the secret channel, the model achieves a exponential growth in the key space and the same application scope of traditional SSC and SSSC model. The new protocol model features can be seen under the actual operation of modifying RC4 algorithm.

Zhuosheng Lin,Guangyi Wang,Xiaoyuan Wang,Simin Yu,Jinhu Lü

DOI: https://doi.org/10.1007/s11071-018-4406-8

IF: 5.741

2018-01-01

Nonlinear Dynamics

Abstract:In this paper, the security performance analysis for a self-synchronization and closed-loop feedback-based chaotic stream cipher is given. According to the chosen-ciphertext attack method, it is found that under the condition of selecting the ciphertext as fixed value, the original chaotic iterative equation is degenerated into an asymptotically stable iterative one, so that the explicit function of state variables and key parameters can be obtained. Based on this idea, and according to the chosen-ciphertext attack method, a single key decipher algorithm is further investigated. Firstly, multiple pairs of plaintext–ciphertext are obtained by choosing the corresponding multiple frames of ciphertext as fixed values. Secondly, a set of possible estimated values for this single key is acquired by utilizing among one pair of plaintext–ciphertext. Finally, the only estimated value that satisfies all the conditions of multiple pairs of plaintext–ciphertext is determined, as an estimated value from the set of all possible estimated values. Security performance analysis results have shown that, under the condition that only one unknown key needs to be deciphered while the remaining keys are all known, the proposed algorithm can, respectively, decipher each individual key accurately. In addition, the attack complexity of the proposed method is lower than that of the exhaustive attack.

Subrata Nandi,Srinivasan Krishnaswamy,Pinaki Mitra

2023-07-05

Abstract:In LFSR-based stream ciphers, the knowledge of the feedback equation of the LFSR plays a critical role in most attacks. In word-based stream ciphers such as those in the SNOW series, even if the feedback configuration is hidden, knowing the characteristic polynomial of the state transition matrix of the LFSR enables the attacker to create a feedback equation over $GF(2)$. This, in turn, can be used to launch fast correlation attacks. In this work, we propose a method for hiding both the feedback equation of a word-based LFSR and the characteristic polynomial of the state transition matrix. Here, we employ a $z$-primitive $\sigma$-LFSR whose characteristic polynomial is randomly sampled from the distribution of primitive polynomials over $GF(2)$ of the appropriate degree. We propose an algorithm for locating $z$-primitive $\sigma$-LFSR configurations of a given degree. Further, an invertible matrix is generated from the key. This is then employed to generate a public parameter which is used to retrieve the feedback configuration using the key. If the key size is $n$- bits, the process of retrieving the feedback equation from the public parameter has a average time complexity $\mathbb{O}(2^{n-1})$. The proposed method has been tested on SNOW 2.0 and SNOW 3G for resistance to fast correlation attacks. We have demonstrated that the security of SNOW 2.0 and SNOW 3G increases from 128 bits to 256 bits.

Cryptography and Security