Stream Ciphers

Block Ciphers

secret key cannot be derived

the subsequenct segment of the keystream cannot be derived

by D.J. Berstein (2008)

Use a 256-bit key

other input

quarter round

(column0123 + diagonal 1234)* 10

stream cipher eventually repeats

approximate the properties of a true random number stream as close as possible

Key should be long enough to resist brute-force atttack

msg broke into fixed sized blocks

encrypted one block at a time

small block size may be insecure

前后plaintext一样Ciphertext不一样

most symmetic block ciphers are based on Feistel Cipher Structure

Block cipher looks like a large substitution

create ciphertext from smaller building blocks

substitution S-box

permutation P-box

completely obsecure statistical properties of original msg

Shannon suggest combining elements to obtain

every bit in cipher text should depend on as many bits as possible in the paintext and the key

Horst Feistel (IBM)

partition input blocks into two halves

implement Shannon's substitution-permutation network concept

Block size

Key size

number of rounds

subkey gerneration

round function

fast software en/decryption & ease of analysis

both plaintext and cipher text 64 bits

KEY 64 bit (56-bit effective key)

data broke into 64-bit blocks(add pad if necessary)

KEY (56-bit effective key + 8-bit parity bits)

64-bits plantext

initial permutation

broke into right half(32-bits) and left half(32-bits)

16 rounds of identical operations

L & R joined

final permutation

repeative

almost the same except that 16 sub-keys are entered in reverse order

odd parity

recommanded minimum key size of any symmetric encryption schemes is 112-bits (80-bits for legacy system)