计算机工程
計算機工程
계산궤공정
COMPUTER ENGINEERING
2014年
3期
167-170,174
,共5页
序列密码%Grain算法%非线性反馈移存器%非奇异性%状态刷新变换%双射性
序列密碼%Grain算法%非線性反饋移存器%非奇異性%狀態刷新變換%雙射性
서렬밀마%Grain산법%비선성반궤이존기%비기이성%상태쇄신변환%쌍사성
stream cipher%Grain algorithm%nonlinear feedback shift register%nonsingularity%state refresh transformation%bijectivity
Grain算法是欧洲序列密码工程eSTREAM最终入选的面向硬件实现的3个序列密码算法之一,它由2个反馈移存器和前馈函数组成,能有效抵御基于线性反馈移存器的序列密码攻击。针对以Grain算法为特例的Grain型级联反馈移存器的非奇异性判定问题,给出Grain型级联反馈移存器在初始化过程和密钥流生成过程中,状态刷新变换均构成双射的充分条件,并通过反例说明对于有限域上的Grain型级联反馈移存器,即使所使用的2个移存器都是非奇异的,并且前馈函数满足相应性质,其状态刷新变换仍可能不构成双射。利用Grain v1算法验证了该非奇异性判定结果的正确性。
Grain算法是歐洲序列密碼工程eSTREAM最終入選的麵嚮硬件實現的3箇序列密碼算法之一,它由2箇反饋移存器和前饋函數組成,能有效牴禦基于線性反饋移存器的序列密碼攻擊。針對以Grain算法為特例的Grain型級聯反饋移存器的非奇異性判定問題,給齣Grain型級聯反饋移存器在初始化過程和密鑰流生成過程中,狀態刷新變換均構成雙射的充分條件,併通過反例說明對于有限域上的Grain型級聯反饋移存器,即使所使用的2箇移存器都是非奇異的,併且前饋函數滿足相應性質,其狀態刷新變換仍可能不構成雙射。利用Grain v1算法驗證瞭該非奇異性判定結果的正確性。
Grain산법시구주서렬밀마공정eSTREAM최종입선적면향경건실현적3개서렬밀마산법지일,타유2개반궤이존기화전궤함수조성,능유효저어기우선성반궤이존기적서렬밀마공격。침대이Grain산법위특례적Grain형급련반궤이존기적비기이성판정문제,급출Grain형급련반궤이존기재초시화과정화밀약류생성과정중,상태쇄신변환균구성쌍사적충분조건,병통과반례설명대우유한역상적Grain형급련반궤이존기,즉사소사용적2개이존기도시비기이적,병차전궤함수만족상응성질,기상태쇄신변환잉가능불구성쌍사。이용Grain v1산법험증료해비기이성판정결과적정학성。
Grain cipher is one of the 3 final hardware-oriented stream ciphers of the eSTREAM project, it is based on two feedback shift registers and a filtering function, and it can effectively resist stream cipher attacks based on linear feedback shift register. In this paper, the nonsingularity of the Grain-like cascade feedback shift registers is investigated, the sufficient conditions of state refresh transformations in initialization phase and key stream generation phase being bijective is given. As a counterexample, for the word-oriented Grain-like cascade feedback shift registers, even if the two feedback shift registers are both nonsingular, and the filtering function satisfies proper conditions, the state update transformation can also be nonbijective. It proves the result of criteria for nonsingularity by using Grain v1 algorithm.
