Related-key Attack on LEX Algorithm

doi:10.3969/j.issn.1000-3428.2014.04.027

Abstract

Abstract: LEX is one of stream cipher algorithms that progressed to Phase 3 of the eSTREAM project, and it is designed based on block cipher algorithm AES. In this paper, a related-key attack based on guess and determination attack for LEX cipher is proposed. If 239.5 Byte key streams under a pair of related-keys respectively are known, with the method of differential cryptanalysis and some properties of AES, the attack can recover the entire candidate keys by guessing 2 Byte key and 8 Byte difference of the internal state, and then find the correct key by encipher test. Analysis results show that the success ratio is 1, and the time complexity is 2100.3 AES encipher operations.

Key words: stream cipher, eSTREAM project, LEX algorithm, AES algorithm, related-key attack, guess and determination attack

摘要： LEX算法是入选欧洲序列密码工程eSTREAM第三阶段的候选流密码算法之一，在分组密码算法AES的基础上进行设计。为此，针对LEX算法进行基于猜测决定方法的相关密钥攻击，在已知一对相关密钥各产生239.5个字节密钥流序列的条件下，借助差分分析的思想和分组密码算法AES轮变换的性质，通过穷举2个字节密钥值和中间状态的8个字节差分恢复出所有候选密钥，利用加密检验筛选出正确的密钥。分析结果表明，该密钥攻击的计算复杂度为2100.3轮AES加密、成功率为1。

关键词: 流密码, eSTREAM计划, LEX算法, AES算法, 相关密钥攻击, 猜测决定攻击

CLC Number:

TN918.1

WANG Qiu-yan, JIN Chen-hui. Related-key Attack on LEX Algorithm[J]. Computer Engineering, doi: 10.3969/j.issn.1000-3428.2014.04.027.

王秋艳，金晨辉. LEX算法的相关密钥攻击[J]. 计算机工程, doi: 10.3969/j.issn.1000-3428.2014.04.027.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.3969/j.issn.1000-3428.2014.04.027

http://www.ecice06.com/EN/Y2014/V40/I4/141

References

参考文献 [1] ECRYPT. eSTREAM: ECRYPT Stream Cipher Project, IST- 2002-507932[EB/OL]. (2004-02-11). http://www.ecrypt.eu. org/stream. [2] European Union. European Project IST-1999-12324: New European Schemes for Signatures, Integrity, and Encryp- tion[EB/OL]. (2002-03-16). http://www.cosic.esat.kuleuven. be/nessie. [3] Biryukov A. The Design of a Stream Cipher LEX[C]// Proceedings of the 13th International Conference on Selected Areas in Cryptography. Berlin, Germany: ACM Press, 2007: 67-75. [4] Velichkov V, Rijmen V, Preneel B. Algebraic Cryptanalysis of a Small-scale Version of Stream Cipher LEX[J]. Information Security, 2010, 4(2): 49-61. [5] Wu Hongjun, Preneel B. Resynchronization Attacks on WG and LEX[C]//Proceedings of the 13th International Conference on Fast Software Encryption. Berlin, Germany: Springer- Verlag, 2006: 422-432. [6] 张中亚, 关杰. 对流密码算法LEX的差分故障攻击[J]. 上海交通大学学报: 自然版, 2012, 46(6): 865-869. [7] Bouillaguet C, Derbez P, Dunkelman O. Low Data Complexity attacks on AES[J]. IEEE Transactions on Information Theory, 2012, 58(11): 7002-7017. (下转第150页) (上接第145页) [8] Dunkelman O, Keller N. A New Attack on the LEX Stream Cipher[C]//Proceedings of the 14th International Conference on the Theory and Application of Cryptology and Information Security. Berlin, Germany: Springer-Verlag, 2008: 539-556. [9] Dunkelman O. Cryptanalysis of the Stream Cipher LEX[J]. Designs, Codes and Cryptography, 2013, 67(3): 257-273. [10] Mainack M, Avik C, Nilanjia D. TweLEX: A Tweaked Version of the LEX Stream Cipher[EB/OL]. (2011-05-19). http://eprint. iacr.org/2011/586. [11] Biham E. New Types of Cryptanalytic Attacks Using Related Keys[J]. Journal of Cryptology, 1994, 7(4): 229-246. [12] Daemen J, Rijmen V. The Design of Rijndael[M]. Berlin, Germany: Springer-Verlag, 2002. 编辑陆燕菲

[1]	HU Zijie,ZHANG Fan,SHEN Jizhong,ZHAO Xinjie. Remote Control Data Protection Method for Civilian UAV [J]. Computer Engineering, 2019, 45(4): 100-107.
[2]	XIA Wentao, PAN Senshan, WANG Liangmin. An Ultra-lightweight Stream Cipher Algorithm for RFID [J]. Computer Engineering, 2019, 45(10): 144-149.
[3]	DING Jie,SHI Hui,GONG Jing,DENG Yuanqing. An Improved Algorithm of Key Stream Extraction with Slide Attack Resistant [J]. Computer Engineering, 2018, 44(2): 158-162.
[4]	YE Run,DENG Yu. Multi-target Tracking Method Based on Sparse Theory and Sub-problem Coupling [J]. Computer Engineering, 2017, 43(6): 219-224,229.
[5]	REN Yaoyao,ZHANG Wenying,XING Chaohui. Related-key Differential Analysis of Khudra Algorithm [J]. Computer Engineering, 2017, 43(11): 117-121.
[6]	DUAN Xiaoyi,WANG Sixiang,CUI Qi,SUN Kewang. A High-order Differential Power Analysis Attack Scheme with Masked AES Algorithm [J]. Computer Engineering, 2017, 43(10): 120-125.
[7]	WEI Wanyin,DU Xiaoni,WANG Guohui. Research on Linear Complexity of Quaternary Sequences with Period 2pq [J]. Computer Engineering, 2016, 42(3): 161-164.
[8]	WANG Qiu-yan, JIN Chen-hui. Criteria for Nonsingularity of Grain-like Cascade Feedback Shift Register [J]. Computer Engineering, 2014, 40(3): 167-170,174.
[9]	DAN Yong-Fang, DU Xiao-Ni, YAN Tong-Jiang, LI Xu. Study of Linear Complexity of Generalized Cyclotomic Sequences with Period pm [J]. Computer Engineering, 2013, 39(7): 189-192,199.
[10]	LUO Fang, OU Qiang-Xu, FU Wei. A Self-synchronic Stream Cipher Model Based on Block Cipher [J]. Computer Engineering, 2013, 39(6): 170-173.
[11]	LI Xu, DU Xiao-Ni, ZHANG Ji, WANG Cai-Fen. Algebraic Attack and Improvement on WSN Stream Cipher Encryption Scheme [J]. Computer Engineering, 2013, 39(3): 142-145.
[12]	WANG Jin-ling, GAO Peng-ge. New Self-shringking Controlled Generator on GF(3) [J]. Computer Engineering, 2013, 39(11): 127-130,135.
[13]	LI Ai-Guo, FENG Guo-Song. A Design of Security USB2.0 Device Controller [J]. Computer Engineering, 2012, 38(24): 288-290.
[14]	GONG Ji-Zhong, CHEN Gong-Liang, LI Lin-Sen, LI Jian-Hua. RFID Secure Authentication Protocol Based on Stream Cipher [J]. Computer Engineering, 2012, 38(18): 126-129.
[15]	HU Da-Liang, CENG Guang, HAN Wen-Bao, LIU Xiang-Hui. Research on Interval Vector Properties of Primitive s-LFSR Sequences [J]. Computer Engineering, 2012, 38(13): 105-107.

Please choose a citation manager

Content to export