Fault Analysis on the Stream Ciphers LILI-128 and Achterbahn

LILI-128 is a clock controlled stream cipher based on two LFSRs with one clock control function and one non-linear filter function. The clocking of the second LFSR is controlled by the first LFSR. In this paper we propose a fault algebraic attack on LILI-128 stream cipher. We first recover the state bits of the first LFSR by injecting a single bit fault in the first LFSR. After that we recover the second LFSR state bits by following algebraic cryptanalysis technique. We also propose fault attack on Achterbahn stream cipher, which is based on 8 NLFSRs, 8 LFSRs and one non-linear combining function. We first inject a single bit fault into the NLFSR-A then observe the normal and faulty keystream bits to recover almost all the state bits of the NLFSR-A after key initialization phase. One can apply our technique to other NLFSR-B, C, D to recover their state bits also.

[1]  E. Dawson,et al.  The LILI-128 Keystream Generator , 2000 .

[2]  William Millan,et al.  The LILI-II Keystream Generator , 2002, ACISP.

[3]  Berndt Gammel,et al.  The Achterbahn Stream Cipher , 2005 .

[4]  Willi Meier,et al.  Fast Algebraic Attacks on Stream Ciphers with Linear Feedback , 2003, CRYPTO.

[5]  Willi Meier,et al.  Cryptanalysis of Achterbahn , 2006, FSE.

[6]  Michal Hojsík,et al.  Differential Fault Analysis of Trivium , 2008, FSE.

[7]  Aline Gouget,et al.  Fault analysis of GRAIN-128 , 2009, 2009 IEEE International Workshop on Hardware-Oriented Security and Trust.

[8]  Amr M. Youssef,et al.  Differential Fault Analysis of Rabbit , 2009, Selected Areas in Cryptography.

[9]  Dipanwita Roy Chowdhury,et al.  Fault Analysis of Grain-128 by Targeting NFSR , 2011, AFRICACRYPT.

[10]  Adi Shamir,et al.  Fault Analysis of Stream Ciphers , 2004, CHES.