论文信息 - Chosen Ciphertext Attack on a New Class of Self-Synchronizing Stream Ciphers

Chosen Ciphertext Attack on a New Class of Self-Synchronizing Stream Ciphers

At Indocrypt’2002, Arnault et al. proposed a new class of self-synchronizing stream ciphers combining LFSR and FCSR architectures. It was claimed to be resistant to known attacks. In this paper, we show that such a self-synchronizing stream cipher is extremely vulnerable to chosen ciphertext attack. We can restore the secret keys easily from one chosen ciphertext with little computation. For the parameters given in the original design, it takes less than one second to restore the secret keys on a Pentium 4 processor.

Bin Zhang | Dengguo Feng | Feng Bao | Hongjun Wu

[1] Mark Goresky,et al. Fibonacci and Galois representations of feedback-with-carry shift registers , 2002, IEEE Trans. Inf. Theory.

[2] Alfred Menezes,et al. Progress in Cryptology — INDOCRYPT 2002 , 2002, Lecture Notes in Computer Science.

[3] François Arnault,et al. A New Class of Stream Ciphers Combining LFSR and FCSR Architectures , 2002, INDOCRYPT.

[4] Lajos Rónyai,et al. Factoring polynomials over finite fields , 1987, 28th Annual Symposium on Foundations of Computer Science (sfcs 1987).

[5] Alfred Menezes,et al. Handbook of Applied Cryptography , 2018 .

[6] Victor Shoup,et al. A fast deterministic algorithm for factoring polynomials over finite fields of small characteristic , 1991, ISSAC '91.