Differential distinguishing attack on the Shannon stream cipher based on fault analysis

Author

Hassanzadeh, Mehdi M. ; Parker, Matthew G. ; Helleseth, Tor ; Salehani, Y. Esmaeili ; Abyaneh, Mohammad R Sohizadeh

Author_Institution

Dept. of Inf., Univ. of Bergen, Bergen

fYear

2008

fDate

27-28 Aug. 2008

Firstpage

671

Lastpage

676

Abstract

In reference, some weak points in the design of the Shannon stream cipher and a differential distinguisher with complexity of O(2^14.92) keystream bits (i.e. O(2^9.92) keystream words) were presented. Another distinguishing attack based on a multidimensional linear transformation was presented in which require 2^106.996 keystream words. Both of these attacks need to have access to the initial state that is unlikely. In this paper, a likely attack using fault analysis method is exploited to solve the mentioned problem. Additionally, a new distinguisher is proposed which improves the attack complexity to four times the complexity of running the Shannon stream cipher. Only are two differential outputs needed for successful attack with error probability equal to 0.001.

Keywords

information theory; message authentication; random number generation; Shannon stream cipher; differential distinguishing attack; fault analysis; multidimensional linear transformation; Algorithm design and analysis; Doped fiber amplifiers; Error probability; Filters; Informatics; Message authentication; Multidimensional systems; Output feedback; Shift registers; Differential Fault Analysis (DFA); Shannon stream cipher; differential; distinguishing attack;

fLanguage

English

Publisher

ieee

Conference_Titel

Telecommunications, 2008. IST 2008. International Symposium on

Conference_Location

Tehran

Print_ISBN

978-1-4244-2750-5

Electronic_ISBN

978-1-4244-2751-2

Type

conf

DOI

10.1109/ISTEL.2008.4651385

Filename

4651385