论文信息 - Iterative Probabilistic Cryptanalysis of RC4 Keystream Generator

Iterative Probabilistic Cryptanalysis of RC4 Keystream Generator

An iterative probabilistic method for reconstructing the initial state of RC4 keystream generator from a short segment of the keystream sequence is developed. The cryptanalytic algorithm consists of a forward and backward recursive computation of the posterior probabilities of the internal state components given a keystream segment. While maintaining the computational complexity, the new method presents a theoretical and practical improvement of a recently proposed method of a similar type, as less entries of the initial table are required to be known for the attack to be successful. If these entries have to be guessed, then the attack is expected to remain infeasible for the recommended word size of RC4.

Jovan Dj. Golic

[1] Jovan Đ. Golić. Recent Advances in Stream Cipher Cryptanalysis , 1998 .

[2] Jovan Dj. Golic,et al. Linear models for a time-variant permutation generator , 1999, IEEE Trans. Inf. Theory.

[3] John Cocke,et al. Optimal decoding of linear codes for minimizing symbol error rate (Corresp.) , 1974, IEEE Trans. Inf. Theory.

[4] Vincent Rijmen,et al. Analysis Methods for (Alleged) RC4 , 1998, ASIACRYPT.

[5] Alfred Menezes,et al. Handbook of Applied Cryptography , 2018 .

[6] Jovan Dj. Golic. Linear Models for Keystream Generators , 1996, IEEE Trans. Computers.

[7] Walter Fumy,et al. Advances in Cryptology — EUROCRYPT ’97 , 2001, Lecture Notes in Computer Science.

[8] Jovan Dj. Golic,et al. Linear Statistical Weakness of Alleged RC4 Keystream Generator , 1997, EUROCRYPT.

[9] Kazuo Ohta,et al. Advances in Cryptology — ASIACRYPT’98 , 2002, Lecture Notes in Computer Science.