论文信息 - On the security of FCSR-based pseudorandom generators

On the security of FCSR-based pseudorandom generators

This article describes new theoretical results concerning the general behavior of an FCSR automaton that allow to better understand the initial parameters that must be chosen to use this automaton as a basic block of a filtering stream cipher. The results demonstrated here especially concern the structure of the subjacent graph of an FCSR automaton, its entropy and the number of iterations of the FCSR transition function required to reach the main part of the graph. A linear weakness and a way to discard the induced potential attack are also given. The parameters chosen for the two candidates F-FCSR-16 and F-FCSR-H make this attack impossible.

François Arnault | Thierry P. Berger | Marine Minier

[1] François Arnault,et al. F-FCSR: Design of a New Class of Stream Ciphers , 2005, FSE.

[2] Woo-Hwan Kim,et al. TMD-Tradeoff and State Entropy Loss Considerations of Streamcipher MICKEY , 2005, INDOCRYPT.

[3] François Arnault,et al. Design and properties of a new pseudorandom generator based on a filtered FCSR automaton , 2005, IEEE Transactions on Computers.

[4] N. Koblitz. p-adic Numbers, p-adic Analysis, and Zeta-Functions , 1977 .

[5] Mark Goresky,et al. Arithmetic crosscorrelations of feedback with carry shift register sequences , 1997, IEEE Trans. Inf. Theory.

[6] Mark Goresky,et al. Fibonacci and Galois representations of feedback-with-carry shift registers , 2002, IEEE Trans. Inf. Theory.

[7] T. P. Berger,et al. Design of new pseudorandom generators based on a filtered FCSR automaton , 2004 .

[8] François Arnault,et al. Update on F-FCSR Stream Cipher , 2006 .

[9] François Arnault,et al. Preventing weaknesses on F-FCSR in IV mode and tradeoff attack on F-FCSR 8 , 2005 .

[10] Mark Goresky,et al. 2-Adic Shift Registers , 1993, FSE.