A multidimensional linear distinguishing attack on the Shannon cipher (Q1017537)
From MaRDI portal
 | This is the item page for this Wikibase entity, intended for internal use and editing purposes. Please use this page instead for the normal view: A multidimensional linear distinguishing attack on the Shannon cipher |
scientific article; zbMATH DE number 5552653
| Language | Label | Description | Also known as |
|---|---|---|---|
| default for all languages | No label defined |
||
| English | A multidimensional linear distinguishing attack on the Shannon cipher |
scientific article; zbMATH DE number 5552653 |
Statements
A multidimensional linear distinguishing attack on the Shannon cipher (English)
0 references
12 May 2009
0 references
Summary: We present a linear distinguishing attack on the stream cipher Shannon. Our distinguisher can distinguish the output keystream of Shannon from about \(2^{107}\) keystream words while using an array of \(2^{32}\) counters. The distinguisher makes use of a multidimensional linear transformation instead of a 1D transformation, which is traditionally used in linear distinguishing attacks. This gives a clear improvement to the keystream requirement: we need approximately \(2^{5}\) times less keystream than when a 1D transformation is used. In addition, we give evidence of the correctness of the distinguisher by applying it to a smaller version of Shannon.
0 references
cryptography
0 references
distinguishing attacks
0 references
linear cryptanalysis
0 references
multiple linear approximations
0 references
Shannon cipher
0 references
stream ciphers
0 references
output keystream
0 references
0.9809369444847108
0 references
0.7899602055549622
0 references
0.7708434462547302
0 references
0.7683666944503784
0 references
