Differential Cryptanalysis of Trivium Stream Cipher Based on Automatic Deduction

DING Lin; GUAN Jie

doi:10.3969/j.issn.0372-2112.2014.08.030

您当前的位置：

首页 >

文章列表页 >

Differential Cryptanalysis of Trivium Stream Cipher Based on Automatic Deduction

更新时间：2025-07-16

- Differential Cryptanalysis of Trivium Stream Cipher Based on Automatic Deduction
- Acta Electronica Sinica Vol. 42, Issue 8, Pages: 1647-1652(2014)
- 作者机构：
  
  解放军信息工程大学,河南,郑州,450000
- 作者简介：
- 基金信息：
  
  National Natural Science Foundation of China (No.61202491, No.61272041, No.61272488);PLA Military Science Postgraduate Project (No.2010JY0263-149);Open Fund of Key Laboratory of Information Assurance Technology (No.KJ-13-007);Fund of Key Laboratory of Secure Communication (No.9140C110303140C11003)
- DOI：10.3969/j.issn.0372-2112.2014.08.030
  CLC： TN918.1
- Published：2014
- 稿件说明：
移动端阅览
DING Lin, GUAN Jie. Differential Cryptanalysis of Trivium Stream Cipher Based on Automatic Deduction[J]. Acta Electronica Sinica, 2014, 42(8): 1647-1652.
DOI：

DING Lin, GUAN Jie. Differential Cryptanalysis of Trivium Stream Cipher Based on Automatic Deduction[J]. Acta Electronica Sinica, 2014, 42(8): 1647-1652. DOI： 10.3969/j.issn.0372-2112.2014.08.030.

摘要

Trivium是欧洲eSTREAM工程评选出的7个最终胜出的流密码算法之一.本文提出了针对Trivium的基于自动推导的差分分析技术，利用该技术可以得到任意轮Trivium算法的差分传递链.将该技术应用于轮数为288的简化版Trivium算法，提出了一个有效的区分攻击，仅需2

个选择IV，区分优势为0.999665，攻击结果远优于已有的线性密码分析和多线性密码分析.将该技术应用于更多轮的Trivium算法和由Turan和Kara提出的修改Trivium算法，结果表明，初始化轮数低于359的Trivium算法不能抵抗差分分析，修改Trivium算法在抵抗差分分析方面优于原Trivium算法.

Abstract

Trivium is a stream cipher and has successfully been chosen as one of seven finalists by European eSTREAM project.In this paper

a differential cryptanalysis of Trivium based on automatic deduction is presented.This new technique enables the attacker to obtain differential characteristics on arbitrary-round Trivium.The technique is applied to 288-round Trivium

which results in an efficient distinguishing attack.Our attack only requires 2

chosen IVs with a distinguishing advantage of 0.999665.The result is much better than the existing single linear cryptanalysis and Linear Cryptanalysis with Multiple Approximations on 288-round Trivium.We also apply the technique to more-round

Trivium and the modified Trivium proposed by Turan and Kara.The results show that Trivium reduced to no more than 359(out of 1152)initialization rounds is weak against differential cryptanalysis

and the modified Trivium is better against differential cryptanalysis than the original Trivium.

关键词

Keywords

references

Views

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

An Equivalent Key Attack on an Image Cryptosystem

The Linear Complexity of the Generalized Self-Shrinking Generator on GF(q)

Analysis for the Equivalent Keys of Steganogaphic Scheme CPT

Run-Lengths of Generalized Self-Shrinking Sequences

Multi-Linear Correlation Attack on Combiners

Related Author

ZHANG Feng

GUO Jian-sheng

WANG Jin-ling

WANG Hui-juan

LIU Jiu-fen

LI Shi-qu

ZHANG Wei-ming

Related Institution

( Electronic Technology Institute, Information Engineering University,,,)

Mathematics Department, Zhengzhou University

School of Communication and Information EngineeringShanghai UniversityShanghai 200072China

Department of Information ResearchInformation Engineering InstituteZhengzhouHenan 450002China

School of Communication and Information Engineering, Shanghai University

⁰