论文信息 - Recovering RC4 Permutation from 2048 Keystream Bytes if jIs Stuck

Recovering RC4 Permutation from 2048 Keystream Bytes if jIs Stuck

In this paper, we study the behaviour of RC4 when the index jis stuck at a certain value not known to the attacker. Though it seems quite natural that RC4 would be weak if jdoes not change, it has never been studied earlier in a disciplined manner. This work presents the nontrivial issues involved in the analysis, identifying how the information regarding Sstarts leaking with as low as 258 keystream output bytes. The leakage of information increases as more bytes are available and finally the complete Sis recovered with 211bytes in around 225time complexity. The attack considers that "the deterministic index iat the point when jgot stuck" and "the value at which jremains stuck" are unknown. Further, the study presents a nice combinatorial structure that is relevant to the fault analysis of RC4.

Goutam Paul | Subhamoy Maitra

[1] Marc Joye,et al. Cryptographic Hardware and Embedded Systems - CHES 2004 , 2004, Lecture Notes in Computer Science.

[2] Goutam Paul,et al. New Form of Permutation Bias and Secret Key Leakage in Keystream Bytes of RC4 , 2008, FSE.

[3] Eli Biham,et al. Impossible Fault Analysis of RC4 and Differential Fault Analysis of RC4 , 2005, FSE.

[4] Adi Shamir,et al. Fault Analysis of Stream Ciphers , 2004, CHES.

[5] Ronald Cramer,et al. Advances in Cryptology - EUROCRYPT 2005, 24th Annual International Conference on the Theory and Applications of Cryptographic Techniques, Aarhus, Denmark, May 22-26, 2005, Proceedings , 2005, EUROCRYPT.

[6] Itsik Mantin,et al. A Practical Attack on the Fixed RC4 in the WEP Mode , 2005, ASIACRYPT.

[7] Octavio Nieto-Taladriz,et al. Finding an internal state of RC4 stream cipher , 2007, Inf. Sci..

[8] A. Maximov,et al. Fast computation of large distributions and its cryptographic applications , 2005 .

[9] Vincent Rijmen,et al. Analysis Methods for (Alleged) RC4 , 1998, ASIACRYPT.

[10] Itsik Mantin,et al. Predicting and Distinguishing Attacks on RC4 Keystream Generator , 2005, EUROCRYPT.

[11] Kazuo Ohta,et al. Advances in Cryptology — ASIACRYPT’98 , 2002, Lecture Notes in Computer Science.

[12] Gerhard Goos,et al. Fast Software Encryption , 2001, Lecture Notes in Computer Science.