Sciweavers

INDOCRYPT
2005
Springer

Cryptanalysis of the Quadratic Generator

14 years 6 months ago
Cryptanalysis of the Quadratic Generator
Let p be a prime and let a and c be integers modulo p. The quadratic congruential generator (QCG) is a sequence (vn) of pseudorandom numbers defined by the relation vn+1 ≡ av2 n +c mod p. We show that if sufficiently many of the most significant bits of several consecutive values vn of the QCG are given, one can recover in polynomial time the initial value v0 (even in the case where the coefficient c is unknown), provided that the initial value v0 does not lie in a certain small subset of exceptional values.
Domingo Gómez, Jaime Gutierrez, Álva
Added 27 Jun 2010
Updated 27 Jun 2010
Type Conference
Year 2005
Where INDOCRYPT
Authors Domingo Gómez, Jaime Gutierrez, Álvar Ibeas
Comments (0)