Resynchronization Attacks on WG and LEX

Capítulo de livro Acesso aberto Revisado por pares

Resynchronization Attacks on WG and LEX

2006; Springer Science+Business Media; Linguagem: Inglês

10.1007/11799313_27

ISSN

1611-3349

Autores

Hongjun Wu, Bart Preneel,

Tópico(s)

Chaos-based Image/Signal Encryption

Resumo

WG and LEX are two stream ciphers submitted to eStream – the ECRYPT stream cipher project. In this paper, we point out security flaws in the resynchronization of these two ciphers. The resynchronization of WG is vulnerable to a differential attack. For WG with 80-bit key and 80-bit IV, 48 bits of the secret key can be recovered with about 231.3 chosen IVs . For each chosen IV, only the first four keystream bits are needed in the attack. The resynchronization of LEX is vulnerable to a slide attack. If a key is used with about 260.8 random IVs, and 20,000 keystream bytes are generated from each IV, then the key of the strong version of LEX could be recovered easily with a slide attack. The resynchronization attack on WG and LEX shows that block cipher related attacks are powerful in analyzing non-linear resynchronization mechanisms.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Resynchronization Attacks on WG and LEX