Is the data encryption standard a group? (Results of cycling experiments on DES) (Q1112006): Difference between revisions

From MaRDI portal
Created claim: Wikidata QID (P12): Q56388146, #quickstatements; #temporary_batch_1709751086066
Created claim: DBLP publication ID (P1635): journals/joc/KaliskiRS88, #quickstatements; #temporary_batch_1731505720702
 
(2 intermediate revisions by 2 users not shown)
Property / cites work
 
Property / cites work: Q3968873 / rank
 
Normal rank
Property / cites work
 
Property / cites work: An Approximate Probability Distribution for the order of Elements of the Symmetric Group / rank
 
Normal rank
Property / cites work
 
Property / cites work: The Probability of Generating the Symmetric Group / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3240862 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Generators for Certain Alternating Groups with Applications to Cryptography / rank
 
Normal rank
Property / cites work
 
Property / cites work: The probability of generating the symmetric group / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q5538132 / rank
 
Normal rank
Property / cites work
 
Property / cites work: DES-like functions can generate the alternating group / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q5555372 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Probability Distributions Related to Random Mappings / rank
 
Normal rank
Property / cites work
 
Property / cites work: A cryptanalytic time-memory trade-off / rank
 
Normal rank
Property / cites work
 
Property / cites work: Is the Data Encryption Standard a Group? (Preliminary Abstract) / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3935355 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4057549 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3728067 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Secure digital communications / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3710461 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3773821 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Information, weight of evidence, the singularity between probability measures and signal detection / rank
 
Normal rank
Property / cites work
 
Property / cites work: A monte carlo method for factorization / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4745878 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Cycle Length in a Random Function / rank
 
Normal rank
Property / cites work
 
Property / cites work: A method for obtaining digital signatures and public-key cryptosystems / rank
 
Normal rank
Property / cites work
 
Property / cites work: Communication Theory of Secrecy Systems* / rank
 
Normal rank
Property / cites work
 
Property / cites work: The Complexity of Finding Cycles in Periodic Functions / rank
 
Normal rank
Property / cites work
 
Property / cites work: Ordered Cycle Lengths in a Random Permutation / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q5512231 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Advances in cryptology. Proceedings of CRYPTO '84 (a workshop on the theory and application of cryptographic techniques held at the University of California, Santa Barbara, August 19--22, 1984) / rank
 
Normal rank
Property / cites work
 
Property / cites work: Advances in cryptology - CRYPTO '86. Proceedings. (A Conference on the Theory and Applications of Cryptographic Techniques held at the University of California, Santa Barbara, August 11-15, 1986) / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3873397 / rank
 
Normal rank
Property / full work available at URL
 
Property / full work available at URL: https://doi.org/10.1007/bf00206323 / rank
 
Normal rank
Property / OpenAlex ID
 
Property / OpenAlex ID: W2030209085 / rank
 
Normal rank
Property / DBLP publication ID
 
Property / DBLP publication ID: journals/joc/KaliskiRS88 / rank
 
Normal rank

Latest revision as of 15:00, 13 November 2024

scientific article
Language Label Description Also known as
English
Is the data encryption standard a group? (Results of cycling experiments on DES)
scientific article

    Statements

    Is the data encryption standard a group? (Results of cycling experiments on DES) (English)
    0 references
    0 references
    0 references
    0 references
    1988
    0 references
    DES defines an indexed set of permutations acting on the message space \(m=\{0,1\}^{64}\). There are \(M=2^{64}\) messages and \(K=2^{56}\) keys. In this paper two statistical tests are presented to determine whether (in whole generality) an indexed set of permutations acting on a finite message space forms a group under functional composition. If the set of permutations according to DES would be a group, or would satisfy some other algebraic closure properties, two well known methods to strengthen DES via multiple encryption would be equivalent to single encryption. As an even more drastic consequence of this assumption, DES would be vulnerable to a known-plaintext attack running in \(2^{28}\) steps (on the average). Several experiments with the tests confirm the a priori belief with high confidence, that DES doesn't form a group. The first test is a ``meet-in- the-middle'' algorithm based on the Birthday Paradox, and uses 0(\(\sqrt{K})\) time and space, where K is the size of the key space. The second test represents a new cycling algorithm that uses 0(\(\sqrt{K})\) time, but only a small constant amount of space. The tests yield known- plaintext attacks on any finite, deterministic cryptosystem that generates a small group, without using specific structural properties of the underlying set of permutations. The results are discussed in detail and a list of open questions about the algebraic structure of DES is included.
    0 references
    data encryption standard
    0 references
    finite permutation group
    0 references
    pure cipher
    0 references
    closed cipher
    0 references
    statistical tests
    0 references
    Birthday Paradox
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references
    0 references

    Identifiers