Improved guess-and-determine and distinguishing attacks on SNOW-V
نویسندگان
چکیده
In this paper, we investigate the security of SNOW-V, demonstrating two guess-and-determine (GnD) attacks against full version with complexities 2384 and 2378, respectively, one distinguishing attack a reduced variant complexity 2303. Our GnD use enumeration recursion to explore valid guessing paths, try truncate as many invalid paths possible at early stages by carefully designing order guessing. our first attack, guess three 128-bit state variables, determine remaining four according consecutive keystream words. We finally next words verify correct guess. The second is similar but exploits more word side information helping paths. targets where 32-bit adders are replaced exclusive-OR operations. samples can be collected from short sequences under different (key, IV) pairs. These do not threaten provide in-depth details for understanding its give new ideas cryptanalysis other ciphers.
منابع مشابه
Guess-and-Determine Attacks on SNOW
This note presents a very simple guess and determine attack on Snow requiring 9 key stream words and about 2 computations.
متن کاملImproved Distinguishing Attacks on HC-256
The software-efficient stream cipher HC-256 was proposed by Wu at FSE 2004. Due to its impressive performance, the cipher was also a well-received entrant to the ECRYPT eSTREAM competition. The closely related stream cipher HC-128, also designed by Wu, went on to find a place in the final portfolio of the eSTREAM contest. The cipher HC-256 is word-oriented, with 32 bits in each word, and uses a...
متن کاملGuess and Determine Attack on Bivium
Bivium is a simplified version of Trivium, a hardware profile finalist of the eSTREAM project. Bivium has an internal state size of 177 bits and a key length of 80 bits. In this paper, a guess and determine attack on this cipher is introduced. In the proposed method, the best linear approximations for the updating functions are first defined. Then by using these calculated approximations, a sys...
متن کاملThe New Heuristic Guess and Determine Attack on Snow 2.0 Stream Cipher
SNOW 2.0 is a word oriented stream cipher that has been selected as a standard stream cipher on ISO/IEC 18033-4. One of the general attacks on the stream ciphers is Guess and Determine attack. Heuristic GD attack is GD attack that represents an algorithmic method to analysis the stream cipher with the variables of the same size. The results of HGD attack on TIPSY, SNOW 1.0 and SNOW 2.0 stream c...
متن کاملExploiting Transformations of the Galois Configuration to Improve Guess-and-Determine Attacks on NFSRs
Guess-and-determine attacks are based on guessing a subset of internal state bits and subsequently using these guesses together with the cipher’s output function to determine the value of the remaining state. These attacks have been successfully employed to break NFSRbased stream ciphers. The complexity of a guess-and-determine attack is directly related to the number of state bits used in the ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: IACR transaction on symmetric cryptology
سال: 2021
ISSN: ['2519-173X']
DOI: https://doi.org/10.46586/tosc.v2021.i3.54-83