objectives
play

Objectives Classifications Feedback Based Stream Ciphers Linear - PDF document

Jun 10, 2023 •98 likes •263 views

Stream Ciphers Debdeep Mukhopadhyay Assistant Professor Department of Computer Science and Engineering Indian Institute of Technology Kharagpur INDIA -721302 Objectives Classifications Feedback Based Stream Ciphers Linear Feedback

  1. Stream Ciphers Debdeep Mukhopadhyay Assistant Professor Department of Computer Science and Engineering Indian Institute of Technology Kharagpur INDIA -721302 Objectives • Classifications • Feedback Based Stream Ciphers – Linear Feedback Shift Registers – m sequences Low Power Ajit Pal IIT Kharagpur 1

  2. Block vs Stream Ciphers • Differences are not definitive. • Blocks Ciphers process plaintext in large blocks. • Stream Ciphers process plaintext in small blocks, even bits • Pure Block ciphers are memory-less. • Stream cipher encryption depends not only on the plaintext, key but also on the current state, One Time Pad • A Vernam cipher over the binary alphabet is defined by: = ⊕ = c m k , for i 1,2,3,... i i i • Unconditionally secured, H(K) ≥ H(M) Low Power Ajit Pal IIT Kharagpur 2

  3. One Time Pad • Drawback: key as long as the plaintext. • This motivates the design of stream ciphers where the key stream is generated from a small key. • The intent is protection against computationally bounded adversary. Synchronous Stream Ciphers • Keystream is generated independently of the plaintext message and of the ciphertext. • Encryption process: – Updating a state variable using σ i+1 = f( σ i , k) – Generating a key stream, z i = g( σ i , k) – Producing the ciphertext stream, Ci = h(z i , m i ) • E.g.: Binary Additive Stream Cipher: – streams are binary and h is ⊕ Low Power Ajit Pal IIT Kharagpur 3

  4. General Model of a synchronous stream cipher Properties of Synchronous Stream Ciphers 1. Synchronization Requirements: 1. Sender and Receiver must be synchronized – using the same key and operating at the same state within that key 2. Insertion/Deletion may cause loss of synchronization 3. Re-synchronization may need re-initialization and/or special marks in the stream at regular intervals. 2. No Error Propagation: 1. Modified digit does not affect decryption of other digits 3. Active Attacks: 1. Insertion/Deletion/Replay cause loss of synchronization, thus is detected by the decryptor. 2. Due to lack of error propagation, the adversary can determine ciphertext and plaintext pairs. Low Power Ajit Pal IIT Kharagpur 4

  5. Self Synchronization Stream Ciphers • A self-synchronizing or asynchronous stream cipher is one in which the key stream is generated as a function of: – the key – a fixed number of previous ciphertext digits. Self Synchronization Stream Ciphers – σ i = (C i-t , C i-t+1 , …, C i-1 ) – z i = g( σ i , k) C i = h(z i , m i ) – where σ 0 = (C -t , C -t+1 , …, C -1 ) is the initial state – and z i is the keystream – and c i is the cipher-stream Low Power Ajit Pal IIT Kharagpur 5

  6. General Model of a self- synchronization stream cipher Properties Self-synchronization: • possible with insertions/deletions (at most t digits may – be lost) Limited Error Propagation: • 1 digit modification/insertion/deletion may cause – incorrect decryption of up to t digits. Active Attacks • Modification can be detected due to incorrect – decryption – better than synchronous stream ciphers. It is more difficult than for synch. stream ciphers to – detect insertion / deletion / replay of ciphertext digits. Diffusion of plaintext statistics: Better • Low Power Ajit Pal IIT Kharagpur 6

  7. Need for Modes of Block Ciphers • Block Ciphers deal with blocks of data • In real life there are two important issues: – plaintext much larger than a typical block length of 128 bits – plaintext not a multiple of the block length • The obvious solution is the first mode, called the Electronic Code Book (ECB) • These modes were first standardized in FIPS Publication 81 in 1980. Example: 1 bit CFB 1-bit shift 1-bit shift I 1 =IV I j c j-1 I j n key key E E 1 Leftmost o j o j 1 bit 1 1 x j x j + + c j Encryption decryption Low Power Ajit Pal IIT Kharagpur 7

  8. Feedback Shift Registers • They are the basic blocks of many keystream generators. – Linear Feedback Shift Registers (LFSRs) – well suited for hardware implementations – can produce sequences of large period – good statistical properties – can be analyzed by algebraic techniques Linear Feedback Shift Registers • An LFSR of length L consists of – L stages (or delay elements) capable of storing 1 bit each and – a clock controlling the movement of data. • During each unit of time: – Content of stage 0 is output – Content of stage j is moved to stage j-1 for each j (1 to L- 1) – New content of stage L-1 is the feedback bit computed as sum without carry of previous contents of a fixed subset of stages. Low Power Ajit Pal IIT Kharagpur 8

  9. An LFSR of length L • Denoted as <L,C(D)> – C(D)=1+c 1 D+…+c L D L is called the connection polynomial. – L is the length of the LFSR Example • Consider the LFSR <4,1+D+D 4 > Low Power Ajit Pal IIT Kharagpur 9

  10. Sequence of the LFSR t D 3 D 2 D 1 D 0 0 0 1 1 0 1 0 0 1 1 2 1 0 0 1 3 0 1 0 0 4 0 0 1 0 5 0 0 0 1 6 1 0 0 0 7 1 1 0 0 Sequence of the LFSR t D 3 D 2 D 1 D 0 8 1 1 1 0 9 1 1 1 1 10 0 1 1 1 11 1 0 1 1 12 0 1 0 1 13 1 0 1 0 14 1 1 0 1 15 0 1 1 0 Low Power Ajit Pal IIT Kharagpur 10

  11. Periodicity of the LFSR sequences • If C(D) is a connection polynomial of degree L – and is irreducible over Z 2 , then each of the 2 L -1 non-zero initial states of the LFSR produces an output sequence with period equal to the least positive integer N, such that C(D) divides 1+D n Periodicity of the LFSR sequences • For some polynomials all the cycle lengths are equal to 2 L -1. • These polynomials are called primitive polynomials. • The sequence is then called m-sequence. • It has good statistical properties. • Example: 1+D+D 4 was also primitive and thus we obtained a maximum length LFSR. Low Power Ajit Pal IIT Kharagpur 11

  12. Reconstructing the LFSR? • Given a sequence can we reconstruct the LFSR which generates the sequence. Generating the sequence • An LFSR is said to generate a sequence s if there is some initial state for which the output sequence of an LFSR is s. • A sequence of finite length n is denoted by s n . Low Power Ajit Pal IIT Kharagpur 12

  13. Linear Complexity Linear Complexity of an infinite binary sequence s, denoted L(s) is defined as: 1. If s is the 0 sequence, L(s)=0 2. If no LFSR generates s, L(s)= ∞ 3. otherwise, L(s) is the length of the shortest LFSR that generates s. Linear Complexity for a finite sequence • Linear Complexity for a finite sequence s n , is the shortest LFSR that generates a sequence having s n as its first n terms. Low Power Ajit Pal IIT Kharagpur 13

  14. Example • Reconstruct an LFSR (of the shortest length) which generates the sequence 00111011. Points to Ponder! • Can you modify the LFSR with connection polynomial primitive to include the all 0 state? Low Power Ajit Pal IIT Kharagpur 14

  15. Further Reading • D. Stinson, Cryptography: Theory and Practice, Chapman & Hall/CRC • A. Menezes, P. Van Oorschot, Scott Vanstone, “Handbook of Applied Cryptography” (Available online) Next Days Topic • Stream Ciphers (contd.) Low Power Ajit Pal IIT Kharagpur 15

Recommend

Objectives Objectives Objectives Objectives Learning Learning Learning Learning

Objectives Objectives Objectives Objectives Learning Learning Learning Learning

11/14/2016 Is Starting a Nonprofit Right for You? Objectives Objectives Objectives Objectives Learning Learning Learning Learning Understand what a Nonprofit Organization is and the Objectives Objectives Objectives Objectives

382 views • 11 slides
Welcome Programme &amp; strategic objectives Programme objectives Strategic objectives

Welcome Programme &amp; strategic objectives Programme objectives Strategic objectives

Changes to the policing model Tuesday 1 st September 2015 Welcome Programme &amp; strategic objectives Programme objectives Strategic objectives Police the county as one Keep people safe from harm Foster doing things once

403 views • 16 slides
1. WE Objectives Overall Objectives : Contribute to reducing unemployment and poverty by enhancing

1. WE Objectives Overall Objectives : Contribute to reducing unemployment and poverty by enhancing

Enhancement of the Business Environment in the Southern Mediterranean (EBSEM) Women's Entrepreneurship &amp; SME Development in MED Countries A project funded by the European Union 1. WE Objectives Overall Objectives : Contribute to

689 views • 23 slides
Rounding out of objectives Aim To look at the draft objectives in a number of different

Rounding out of objectives Aim To look at the draft objectives in a number of different

Rounding out of objectives Aim To look at the draft objectives in a number of different ways to: Identify any inconsistencies/contradictions Identify any risks to the objectives being met from uncertainties in the modelling

389 views • 10 slides
Objectives The key objectives of this development work are to Have a contact cleaner which

Objectives The key objectives of this development work are to Have a contact cleaner which

Objectives The key objectives of this development work are to Have a contact cleaner which meets the requirements of ANSI ESD 20.20 Does not compromise of the cleaning effectiveness of the equipment Slide 1 Existing Technology Slide

440 views • 13 slides
Objectives You should be able to ... Lambda Calculus Examples Here are some examples! Dr.

Objectives You should be able to ... Lambda Calculus Examples Here are some examples! Dr.

Objectives Examples Objectives Examples Objectives You should be able to ... Lambda Calculus Examples Here are some examples! Dr. Mattox Beckman Perform a beta-reduction. Detect -capture and use -renaming to avoid it.

518 views • 6 slides
Conflicting objectives in design Common design objectives: Minimizing mass ( sprint bike;

Conflicting objectives in design Common design objectives: Minimizing mass ( sprint bike;

Conflicting objectives in design Common design objectives: Minimizing mass ( sprint bike; satellite components ) Minimizing volume ( mobile phone; minidisk player ) Objectives Minimizing environmental impact ( packaging, cars ) Maximizing

450 views • 24 slides
STAC P Workgroup Objectives Primary Objectives: To gain an in depth understanding of how the

STAC P Workgroup Objectives Primary Objectives: To gain an in depth understanding of how the

STAC P Workgroup Objectives Primary Objectives: To gain an in depth understanding of how the 1. CBP watershed model currently simulates phosphorus loads from cropland and whether the current simulation approach is consistent with the latest

251 views • 4 slides
Dr Martin Barnes President, APM The triangle is about OBJECTIVES Because Project Management

Dr Martin Barnes President, APM The triangle is about OBJECTIVES Because Project Management

Dr Martin Barnes President, APM The triangle is about OBJECTIVES Because Project Management is all about achieving objectives Time, Cost and Quality are always the main objectives with different relative emphasis The plan for

792 views • 23 slides
1 Program Objectives Program Objectives Cont. Research: Explores new methods to grow and

1 Program Objectives Program Objectives Cont. Research: Explores new methods to grow and

The Why and What The Specialty Crop Program Objectives and Guidelines The Nevada Department of Agriculture opens a competitive solicitation process to award funds for Katie Jameson projects that enhance the competitiveness of Program Manager

426 views • 10 slides
Trigeminal Autonomic Cephalalgias Learning Objectives Learning Objectives At the conclusion

Trigeminal Autonomic Cephalalgias Learning Objectives Learning Objectives At the conclusion

Steven Graff-Radford, DDS Co-Director, the Pain Center Cedars-Sinai Medical Center Clinical Professor USC School of Dentistry Los Angeles, CA Trigeminal Autonomic Cephalalgias Learning Objectives Learning Objectives At the conclusion

373 views • 23 slides
Objectives Objectives Define symptoms and risk factors for ovarian cancer Review the

Objectives Objectives Define symptoms and risk factors for ovarian cancer Review the

Ovarian Cancer Ovarian Cancer Valerie Waddell, MD Assistant Professor, Clinical General Division of Obstetrics and Gynecology The Ohio State University Wexner Medical Center Objectives Objectives Define symptoms and risk factors for

579 views • 23 slides
PO1 Smart Growth specific objectives In accordance with the policy objectives, the ERDF shall

PO1 Smart Growth specific objectives In accordance with the policy objectives, the ERDF shall

EU Budget for the future I nternational cooperation in future smart specialization Marek Przeor DG Regional and Urban Policy #CohesionPolicy #EUinmyRegion PO1 Smart Growth specific objectives In accordance with the policy objectives, the

359 views • 12 slides
Wrist Instability and Fusion course Learning Objectives Slides Dorsal Approach Objectives

Wrist Instability and Fusion course Learning Objectives Slides Dorsal Approach Objectives

The Birmingham Hand Centre Wrist Instability and Fusion course Learning Objectives Slides Dorsal Approach Objectives Midline incision over 4 th EC 1. 2. Elevate ER over EC3+4 3. Retract tendons, dissect onto dorsal ligs 4. Open proximal

235 views • 6 slides
Creating our Equality Objectives Introduction Structure of the Day: 1. Why do we have Equality

Creating our Equality Objectives Introduction Structure of the Day: 1. Why do we have Equality

Creating our Equality Objectives Introduction Structure of the Day: 1. Why do we have Equality Objectives? 2. What have North West London (NWL) residents already told us? 3. What do our current Equality Objectives look like? 4. What do our

223 views • 11 slides
EURORAI Objectives and activities Page 1 EURORAI 1. What is EURORAI? 2. Main objectives

EURORAI Objectives and activities Page 1 EURORAI 1. What is EURORAI? 2. Main objectives

EURORAI Objectives and activities Page 1 EURORAI 1. What is EURORAI? 2. Main objectives 3. Members 4. Activities 5. Seminars 6. Working groups 7. Publications 8. Resolutions and statements 7. Financial

348 views • 18 slides
Blue Box Ins and Outs Niagara Region July 23, 2013 Campaign Objectives Objectives: i. To

Blue Box Ins and Outs Niagara Region July 23, 2013 Campaign Objectives Objectives: i. To

WMAC Meeting Blue Box Ins and Outs Niagara Region July 23, 2013 Campaign Objectives Objectives: i. To reduce processing challenges associated with improperly prepared plastic bags and recyclable film plastics ii. To reduce the amount of

471 views • 18 slides
A.I.S. Class 15: Outline I Questions relating to REA I Learning Objectives for Chapter 10 I

A.I.S. Class 15: Outline I Questions relating to REA I Learning Objectives for Chapter 10 I

A.I.S. Class 15: Outline I Questions relating to REA I Learning Objectives for Chapter 10 I Controls I Misstatements I Internal Control Structure I Control Objectives and Audit Objectives I COBIT I Group Work for Chapter 10 Dr. Peter R Gillett

486 views • 27 slides
TB Wise Multi-Asset Growth 1 OBJECTIVES AND POLICY 2 Investment Objectives and Policy

TB Wise Multi-Asset Growth 1 OBJECTIVES AND POLICY 2 Investment Objectives and Policy

TB Wise Multi-Asset Growth 1 OBJECTIVES AND POLICY 2 Investment Objectives and Policy Provide growth over the medium to long term in excess of the CBOE UK All Companies Index and in line with, or better than, the rate of UK inflation

656 views • 31 slides
LifeStream v4.11 Overview September 4, 2013 CP348.03 Objectives and Agenda Objectives:

LifeStream v4.11 Overview September 4, 2013 CP348.03 Objectives and Agenda Objectives:

Manage Coordinate Customize Integrate LifeStream v4.11 Overview September 4, 2013 CP348.03 Objectives and Agenda Objectives: Provide an overview of the LifeStream v4.11 release Review use case examples associated with the new

667 views • 23 slides
Valuing the Objectives: Results from Yesterday Round 2 Workshop Presentation 2 Valuing

Valuing the Objectives: Results from Yesterday Round 2 Workshop Presentation 2 Valuing

Valuing the Objectives: Results from Yesterday Round 2 Workshop Presentation 2 Valuing Fundamental Objectives How important are each of the objectives? Should they all be valued the same? Base responses on personal beliefs

784 views • 45 slides
FAO/SNE Project Objectives General objectives Improve the surveillance and the control of three

FAO/SNE Project Objectives General objectives Improve the surveillance and the control of three

OSRO/LIB/801/CHA: Emergency Assistance for Outbreaks of Deadly Zoonotic Disease (HPAI, RVF, Rabies) in Libya FAO/SNE Project Objectives General objectives Improve the surveillance and the control of three zoonotic diseases (HPAI, Rabies and

371 views • 9 slides
Quantifiable Objectives Update Quantifiable Objectives Update Homosassa River Homosassa River

Quantifiable Objectives Update Quantifiable Objectives Update Homosassa River Homosassa River

Quantifiable Objectives Update Quantifiable Objectives Update Homosassa River Homosassa River Chris J. Anastasiou, Ph.D. Chief Scientist Natural Systems and Restoration Bureau Southwest Florida Water Management District Quantifiable

653 views • 17 slides
A.I.S. Class 11: Outline I Learning Objectives for Chapter 10 I Controls I Misstatements I Internal

A.I.S. Class 11: Outline I Learning Objectives for Chapter 10 I Controls I Misstatements I Internal

A.I.S. Class 11: Outline I Learning Objectives for Chapter 10 I Controls I Misstatements I Internal Control Structure I Control Objectives and Audit Objectives I COBIT I Events and Event Risks I Group Work for Chapter 10 I Mid-term Examination Dr.

605 views • 34 slides

More recommend