对流密码算法Phelix的差分故障攻击

上海交通大学学报（自然版） ›› 2013, Vol. 47 ›› Issue (07): 1131-1136.

• 无线电电子学、电信技术 • 上一篇下一篇

对流密码算法Phelix的差分故障攻击

张中亚1,2，关杰1

（1. 信息工程大学，郑州 450004；2．解放军71282部队，河南洛阳 471000）

收稿日期:2011-07-20 出版日期:2013-07-30 发布日期:2013-07-30
基金资助:
国家自然科学基金资助项目（61202491）

Differential Analysis of Stream Cipher Phelix

ZHANG Zhongya1,2,GUAN Jie1

(1. Information Engineering University, Zhengzhou 450004, China; 2. Unit 71282 of the PLA, Luoyang 471000, Henan, China)

Received:2011-07-20 Online:2013-07-30 Published:2013-07-30

摘要/Abstract

摘要：

流密码算法Phelix是ESTREAM计划的一个候选算法，文中给出了模2n加环节XY=Z的一个基于单比特故障的差分方程组求解算法.利用该算法采用面向比特的故障诱导模型对Phelix进行了差分故障攻击，该攻击理论上只需652个单比特故障就能完全恢复256 bit的工作密钥，计算复杂度为O(220).实验结果显示，Phelix算法对差分故障攻击是不安全的.

关键词: 流密码, Phelix算法, 差分方程, 差分故障攻击

Abstract:

Phelix is a candidate algorithm for the ESTREAM stream cipher project. An algorithm was presented to solve a system of differential equations based on single-bit fault on XY=Z in this paper. Then a bit-oriented differential fault analysis of Phelix based on the algorithm was shown. Theoretically, the 256-bit working key can be obtained by using 652 bit-faults, with the computational complexity of O(220). The result shows that the stream cipher Phelix is vulnerable to differential fault analysis.

Key words: stream cipher, Phelix, differential equation, differential fault analysis

中图分类号:

TN 918.1

张中亚1,2，关杰1. 对流密码算法Phelix的差分故障攻击[J]. 上海交通大学学报（自然版）, 2013, 47(07): 1131-1136.

ZHANG Zhongya1,2,GUAN Jie1. Differential Analysis of Stream Cipher Phelix[J]. Journal of Shanghai Jiaotong University, 2013, 47(07): 1131-1136.

参考文献

［1］Whiting D, Schneier B, Lucks S, et al. Phelix: Fast encryption and authentication in a single cryptographic primitive［EB/OL］. ［20110330］. http:∥www.ecrypt.eu.org/stream.

［2］Wu H J, Preneel B. Differentiallinear attacks against the stream cipher phelix［J］. Lecture Notes in Computer Science, 2007, 4593: 87100.

［3］Yaser E S, Hadi A. A chosenkey distinguishing attack on phelix［EB/OL］. ［20110330］. http:∥www.ecrypt.eu.org/stream.

［4］Boneh D, DeMillo R A, Lipton R J. On the importance of checking cryptographic protocols for faults［J］. Lecture Notes in Computer Science, 1997, 1233: 3751.

［5］Biham E, Shamir A. Differential fault analysis of secret key cryptosystems［J］. Lecture Notes in Computer Science, 1997, 1294: 513525.

［6］Hojsik M, Rudolf B. Differential fault analysis of trivium［J］. Lecture Notes in Computer Science, 2008, 5086: 158172.

［7］Zhou Y B, Wu W L, Xu N N, et al. Differential fault attack on camellia［J］. Chinese Journal of Electronics, 2009, 18(1): 1319.

［8］Li, W, Gu D W, Li J R, et al. Differential fault analysis on camellia［J］. The Journal of Systems and Software, 2010, 83(5): 844851.

［9］赵新杰,王韬,郭世泽. 一种针对Camellia的改进差分故障分析［J］. 计算机学报, 2011(4): 613627.

ZHAO Xinjie, WANG Tao, GUO Shize. An improved differential fault analysis on camellia［J］. Chinese Journal of Computers, 2011(4): 613627.

［10］李玮,谷大武. 基于密钥编排故障的SMS4算法的差分故障分析［J］. 通信学报, 2008, 29(10): 135142.

LI Wei, GU Dawu. Differential fault analysis on the SMS4 cipher by inducing faults to the key schedule［J］. Journal on Communications, 2008, 29(10): 135142.

［11］魏悦川,李琳,李瑞林,等. SHACAL2算法的差分故障攻击［J］. 电子与信息学报, 2010, 32(2): 318322.

WEI Yuechuan, LI Lin, LI Ruilin, et al. Differential fault analysis on SHACAL2［J］. Journal of Electronics ＆ Information Technology, 2010, 32(2): 318322.

［12］李琳,李瑞林,谢端强,等. KeeLoq和SHACAL1算法的差分故障攻击［J］. 武汉大学学报：理学版, 2008, 54(5): 507512.

LI Lin, LI Ruilin, XIE Duanqiang, et al. Differential fault analysis on keeLoq and SHACAL1［J］. Journal of Wuhan University：Natural Science Edition, 2008, 54(5): 507512.

［13］Yukiyasu T, Terno S, Hiroyasu K, et al. Differential cryptanalysis of Salsa20/8［C］∥SASC2007. Bochum: Stream Ciphers Revisited, Workshop Record, 2007: 3950.

［14］李申华. 对称密码算法AIRA和SALSA20的安全性分析［D］. 济南: 山东大学密码技术与信息安全教育部重点实验室, 2008.

[1]	孙文龙1,2，关杰1. 针对Trivium型密码算法的代数攻击[J]. 上海交通大学学报（自然版）, 2014, 48(10): 1434-1439.
[2]	张中亚, 关杰. 对流密码算法LEX的差分故障攻击[J]. 上海交通大学学报（自然版）, 2012, 46(06): 865-869.
[3]	王晶晶, 陈克非. 序列快速傅里叶攻击的改进 [J]. 上海交通大学学报（自然版）, 2012, 46(02): 285-288.

对流密码算法Phelix的差分故障攻击

Differential Analysis of Stream Cipher Phelix

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 3

编辑推荐

Metrics

本文评价