A multidimensional linear distinguishing attack on the Shannon cipher (Q1017537)
From MaRDI portal
scientific article
| Language | Label | Description | Also known as |
|---|---|---|---|
| English | A multidimensional linear distinguishing attack on the Shannon cipher |
scientific article |
Statements
A multidimensional linear distinguishing attack on the Shannon cipher (English)
0 references
12 May 2009
0 references
Summary: We present a linear distinguishing attack on the stream cipher Shannon. Our distinguisher can distinguish the output keystream of Shannon from about \(2^{107}\) keystream words while using an array of \(2^{32}\) counters. The distinguisher makes use of a multidimensional linear transformation instead of a 1D transformation, which is traditionally used in linear distinguishing attacks. This gives a clear improvement to the keystream requirement: we need approximately \(2^{5}\) times less keystream than when a 1D transformation is used. In addition, we give evidence of the correctness of the distinguisher by applying it to a smaller version of Shannon.
0 references
cryptography
0 references
distinguishing attacks
0 references
linear cryptanalysis
0 references
multiple linear approximations
0 references
Shannon cipher
0 references
stream ciphers
0 references
output keystream
0 references
