Paper 2023/417
Multivariate Correlation Attacks and the Cryptanalysis of LFSR-based Stream Ciphers
, University of BergenAbstract
Cryptanalysis of modern symmetric ciphers may be done by using linear equation systems with multiple right hand sides, which describe the encryption process. The tool was introduced by Raddum and Semaev where several solving methods were developed. In this work, the probabilities are ascribed to the right hand sides and a statistical attack is then applied. The new approach is a multivariate generalisation of the correlation attack by Siegenthaler. A fast version of the attack is provided too. It may be viewed as an extension of the fast correlation attack by Meier and Staffelbach, based on exploiting so called parity-checks for linear recurrences. Parity-checks are a particular case of the relations that we introduce in the present work. The notion of a relation is irrelevant to linear recurrences. We show how to apply the method to some LFSR-based stream ciphers including those from the Grain family. The new method generally requires a lower number of the keystream bits to recover the initial states than other techniques reported in the literature.
Metadata
- Available format(s)
-
PDF
- Category
- Attacks and cryptanalysis
- Publication info
- Preprint.
- Keywords
- CryptanalysisMultivariate correlation attacksTest-and-extend algorithmStream ciphersLFSRsGrain
- Contact author(s)
-
icanalesm0500 @ gmail com
igor semaev @ uib no - History
- 2023-03-24: approved
- 2023-03-23: received
- See all versions
- Short URL
- https://ia.cr/2023/417
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2023/417,
author = {Isaac A. Canales-Martínez and Igor Semaev},
title = {Multivariate Correlation Attacks and the Cryptanalysis of LFSR-based Stream Ciphers},
howpublished = {Cryptology ePrint Archive, Paper 2023/417},
year = {2023},
note = {\url{https://eprint.iacr.org/2023/417}},
url = {https://eprint.iacr.org/2023/417}
}
