UCL logo

UCL Discovery

UCL home » Library Services » Electronic resources » UCL Discovery

Fast algebraic attacks on stream ciphers with linear feedback

Courtois, N.T.; (2003) Fast algebraic attacks on stream ciphers with linear feedback. In: Boneh, D., (ed.) Advances in Cryptology – CRYPTO 2003: 23rd Annual International Cryptology Conference, Santa Barbara, California, USA, August 17-21, 2003. Proceedings. (pp. pp. 176-194). Springer Verlag: Berlin/ Heidelberg, Germany.

Full text not available from this repository.

Abstract

Many popular stream ciphers apply a filter/combiner to the state of one or several LFSRs. Algebraic attacks on such ciphers [10,11] are possible, if there is a multivariate relation involving the key/state bits and the output bits. [1,2,10,11] show that such relations exist for several well known constructions of stream ciphers immune to all previously known attacks. In particular, they allow to break two ciphers using LFSRs and completely ldquowell designedrdquo Boolean functions: Toyocrypt and LILI-128, see [10,11]. similar algebraic attacks exist also for the stateful combiner construction used in Bluetooth keystream generator E0 [1]. More generally, in [2] it is proven that they can break in polynomial time, any combiner with a fixed number of inputs and a fixed number of memory bits. In this paper we present a method that allows to substantially reduce the complexity of all these attacks. We show that when the known keystream bits are consecutive, an important part of the equations will have a recursive structure, and this allows to partially replace the usual sub-cubic Gaussian algorithms for eliminating the monomials, by a much faster, essentially linear, version of the Berlekamp-Massey algorithm. The new method gives the fastest attack proposed so far for Toyocrypt, LILI-128 and the keystream generator that is used in E0 cipher. Moreover we present two new fast general algebraic attacks for stream ciphers using Boolean functions, applicable when the degree and/or the number of inputs is not too big.

Type:Proceedings paper
Title:Fast algebraic attacks on stream ciphers with linear feedback
ISBN-13:9783540406747
Identifier:10.1007/b11817
Publisher version:http://dx.doi.org/10.1007/b11817
Language:English
Keywords:Algebraic attacks, stream ciphers, multivariate equations, nonlinear filters, Boolean functions, combiners with memory, LFSR synthesis, Berlekamp-Massey algorithm, toyocrypt, Cryptrec, LILI-128, Nessie, E0, Bluetooth
UCL classification:UCL > School of BEAMS > Faculty of Engineering Science > Adastral Park

Archive Staff Only: edit this record