The Misuse of RC4 in Microsoft Word and Excel
暂无分享,去创建一个
In this report, we point out a serious security flaw in Microsoft Word and Excel. The stream cipher RC4 [9] with key length up to 128 bits is used in Microsoft Word and Excel to protect the documents. But when an encrypted document gets modified and saved, the initialization vector remains the same and thus the same keystream generated from RC4 is applied to encrypt the different versions of that document. The consequence is disastrous since a lot of information of the document could be recovered easily.
[1] Ronald L. Rivest,et al. The RC4 encryption algorithm , 1992 .
[2] Hugo Krawczyk,et al. Keying Hash Functions for Message Authentication , 1996, CRYPTO.
[3] Ian Goldberg,et al. Randomness and the Netscape browser , 1996 .
[4] Ed Dawson,et al. Automated Cryptanalysis of XOR Plaintext Strings , 1996, Cryptologia.
[5] Adi Shamir,et al. Weaknesses in the Key Scheduling Algorithm of RC4 , 2001, Selected Areas in Cryptography.