对流密码算法LEX的差分故障攻击

上海交通大学学报（自然版） ›› 2012, Vol. 46 ›› Issue (06): 865-869.

• 无线电电子学、电信技术 • 上一篇下一篇

对流密码算法LEX的差分故障攻击

张中亚，关杰

(信息工程大学电子技术学院，郑州 450004)

收稿日期:2011-09-08 出版日期:2012-06-28 发布日期:2012-06-28
基金资助:
通信保密重点实验室基金资助项目（9140C110202110C1101）

Differential Fault Analysis on the Stream Cipher LEX

ZHANG Zhong-Ya, GUAN Jie

(Electronic Technology Institute, Information Engineering University, Zhengzhou 450004, China)

Received:2011-09-08 Online:2012-06-28 Published:2012-06-28

摘要/Abstract

摘要： 基于面向比特随机故障模型对流密码算法LEX(Leak EXtraction)进行了差分故障攻击，得出：需要96对正误输出密钥流和232次计算或120对正误输出密钥流和216次计算可完全恢复128 bit初始密钥.结果显示LEX对差分故障攻击是不安全的.

关键词: 流密码, 差分故障分析, Leak Extraction(LEX)

Abstract: A differential fault analysis on stream cipher LEX (Leak Extraction) based on bit-oriented random fault model is shows that it needs about 96 pairs of correct and faulty keystream and 232 simple operations or 120 pairs of correct and faulty key-stream and 216 simple operations to recover all the 128 bit master key. The result shows that LEX is vulnerable to differential fault analysis.

Key words: stream cipher, differential fault analysis, leak EXtraction(LEX)

中图分类号:

TN 918.1

张中亚, 关杰. 对流密码算法LEX的差分故障攻击[J]. 上海交通大学学报（自然版）, 2012, 46(06): 865-869.

ZHANG Zhong-Ya, GUAN Jie. Differential Fault Analysis on the Stream Cipher LEX[J]. Journal of Shanghai Jiaotong University, 2012, 46(06): 865-869.

参考文献

［1］Biryukov A. The design of a stream cipher LEX ［C］∥Biham E， Youssef A M. Selected Areas in Cryptography.Berlin Heidelberg:Springer Verlag, 2007:6775.

［2］Wu H, Preneel B. Resynchronization attacks on WG and LEX ［J］. Lecture Notes in Computer Science,2006,4047:422432.

［3］Boneh D, DeMillo R A, Lipton R J. On the importance of checking cryptographic protocols for faults ［J］. Lecture Notes in Computer Science, 1997, 1233:3751.

［4］Biham E, Shamir A. Differential fault analysis of secret key cryptosystems ［J］. Lecture Notes in Computer Science, 1994,1294: 513525.

［5］Giraud C. DFA on AES ［J］. Lecture Notes in Computer Science, 2005, 3373: 2741.

［6］Hemme L. A differential fault attack against early rounds of (Triple) DES ［J］. Lecture Notes in Computer Science, 2004,3156: 254267.
［7］李琳,李瑞林,谢端强,等. KeeLoq和SHACAL1算法的差分故障攻击［J］. 武汉大学学报(理学版), 2008,54(5): 507512.

LI Lin, LI Ruilin, XIE Duanqiang, et al. Differential fault analysis on KeeLoq and SHACAL1 ［J］. Journal of Wuhan University(Natural Science Edition), 2008, 54(5): 507512.

［8］魏悦川,李琳,李瑞林,等. SHACAL2算法的差分故障攻击［J］.电子与信息学报, 2010, 32(2): 318322.

WEI Yuechuan, LI Lin, LI Ruilin, et al. Differential fault analysis on SHACAL2 ［J］. Journal of Electronics & Information Technology, 2010, 32(2): 318322.

［9］Hojsik M, Rudolf B. Differential fault analysis of Trvium ［C］∥Fast Software Encryption.Berlin:Springer Verlag, 2008: 158172.

［10］张蕾,吴文玲. SMS4密码算法的差分故障攻击［J］. 计算机学报, 2006, 29(9): 15961602.

ZHANG Lei, WU Wenling. Differential fault analysis on SMS4 ［J］. Chinese Journal of Computers, 2006, 29(9): 15961602.

［11］李玮, 谷大武. 基于密钥编排故障的SMS4算法的差分故障分析［J］. 通信学报, 2008, 29(10): 135142.

LI Wei, GU Dawu. Differential fault analysis on the SMS4 cipher by inducing faults to the key schedule ［J］. Journal on Communications, 2008, 29(10): 135142.

［12］Skorobogatov S, Anderson R. Optical fault induction attacks ［J］. Lecture Notes in Computer Science,2003, 2523: 212.

[1]	孙文龙1,2，关杰1. 针对Trivium型密码算法的代数攻击[J]. 上海交通大学学报（自然版）, 2014, 48(10): 1434-1439.
[2]	张中亚1,2，关杰1. 对流密码算法Phelix的差分故障攻击[J]. 上海交通大学学报（自然版）, 2013, 47(07): 1131-1136.
[3]	王晶晶, 陈克非. 序列快速傅里叶攻击的改进 [J]. 上海交通大学学报（自然版）, 2012, 46(02): 285-288.

对流密码算法LEX的差分故障攻击

Differential Fault Analysis on the Stream Cipher LEX

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 3

编辑推荐

Metrics

本文评价