Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
EUROCRYPT
2007
Springer
2007
Springer
Differential Cryptanalysis of the Stream Ciphers Py, Py6 and Pypy
This paper shows that Py and Pypy are practically insecure. If one key is used with about 216 IVs with special differences, with high probability two identical keystreams will appear. This can be exploited in a key recovery attack. For example, for a 16-bye key and a 16-byte IV, 223 chosen IVs can reduce the effective key size to 3 bytes. For a 32-bye key and a 32-byte IV, the effective key size is reduced to 3 bytes with 224 chosen IVs. Py6, a variant of Py, is more vulnerable to these attacks. Keywords. Differential Cryptanalysis, Stream Cipher, Py, Py6, Pypy.
Real-time Traffic| Added | 16 Aug 2010 |
| Updated | 16 Aug 2010 |
| Type | Conference |
| Year | 2007 |
| Where | EUROCRYPT |
| Authors | Hongjun Wu, Bart Preneel |
Comments (0)
Researcher Info
|
