On Lightweight Stream Ciphers with Shorter Internal States

Armknecht, Frederik; Mikhalev, Vasily

doi:10.1007/978-3-662-48116-5_22

Cited by 73 publications

(63 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…SNOW 2.0 [6] is a new version of SNOW series under the control of a 128-bit key and a 128-bit IV. The word size is 32 bits, and the LFSR is of length 16 with a feedback polynomial in F 2 32 [x]. The nonlinear part takes an FSM with two 32-bit memory units, and a transform using the S-box and mixcolumn in advanced encryption standard (AES), whose structure is similar to the diffusion and confusion form of block ciphers and has high security.…”

Section: Word-orientedmentioning

confidence: 99%

“…Sosemanuk [20] is a winner of eSTREAM project, accommodates a 128-bit key and 128-bit IV. It is a 32-bit word-oriented stream cipher, composed of three parts: an LFSR containing 10 elements of F 2 32 , an FSM with a transition function and a chosen function, a round function from block cipher SERPENT, aiming at improving SNOW 2.0 both from the security and efficiency. The special point of this design is that the output transformation derived from the S-box of SERPENT mixes four successive outputs of the FSM in the bit-slice mode.…”

Section: Word-orientedmentioning

confidence: 99%

“…In order to cater for resource-constrained applications (such as Internet of things (IoT)), small-state lightweight stream ciphers are proposed aiming at resisting the time-memory-data tradeoff (TMDTO) attacks while maintaining a small internal state. Typical examples are Sprout [32], Fruit [33,34], and Plantlet [35], but some of them have been frequently challenged the security [36][37][38]. To meet the requirements for the application environment of homomorphic encryption, a new stream cipher structure was proposed in Eurocrypt 2016, called substitution filter generation, which can be regarded as a variant of filter generator [39].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Stream cipher designs: a review

Jiao

Hao

Feng

2020

Sci. China Inf. Sci.

View full text Add to dashboard Cite

Stream cipher is an important branch of symmetric cryptosystems, which takes obvious advantages in speed and scale of hardware implementation. It is suitable for using in the cases of massive data transfer or resource constraints, and has always been a hot and central research topic in cryptography. With the rapid development of network and communication technology, cipher algorithms play more and more crucial role in information security. Simultaneously, the application environment of cipher algorithms is increasingly complex, which challenges the existing cipher algorithms and calls for novel suitable designs. To accommodate new strict requirements and provide systematic scientific basis for future designs, this paper reviews the development history of stream ciphers, classifies and summarizes the design principles of typical stream ciphers in groups, briefly discusses the advantages and weakness of various stream ciphers in terms of security and implementation. Finally, it tries to foresee the prospective design directions of stream ciphers.

show abstract

Section: Word-orientedmentioning

confidence: 99%

Section: Word-orientedmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Stream cipher designs: a review

Jiao

Hao

Feng

2020

Sci. China Inf. Sci.

View full text Add to dashboard Cite

show abstract

“…The key, instead of being used for initializing the state, is introduced by XORing two key information-bits per round to each feedback bit. The recently proposed stream cipher Sprout [4], inspired by Grain but with much smaller registers, also inserts the key in a similar way: instead of using the key for initializing the state, one key information-bit is XORed at each clock to the feedback function. We can see the parallelism between these two ciphers and our newly proposed variant.…”

Section: Kreyviummentioning

confidence: 99%

Stream Ciphers: A Practical Solution for Efficient Homomorphic-Ciphertext Compression

et al. 2018

View full text Add to dashboard Cite

In typical applications of homomorphic encryption, the first step consists for Alice to encrypt some plaintext m under Bob's public key pk and to send the ciphertext c = HE pk (m) to some third-party evaluator Charlie. This paper specifically considers that first step, i.e. the problem of transmitting c as efficiently as possible from Alice to Charlie. As previously noted, a form of compression is achieved using hybrid encryption. Given a symmetric encryption scheme E, Alice picks a random key k and sends a much smaller ciphertext c = (HE pk (k), E k (m)) that Charlie decompresses homomorphically into the original c using a decryption circuit C E −1 . In this paper, we revisit that paradigm in light of its concrete implementation constraints; in particular E is chosen to be an additive IV-based stream cipher. We investigate the performances offered in this context by Trivium, which belongs to the eSTREAM portfolio, and we also propose a variant with 128-bit security: Kreyvium. We show that Trivium, whose security has been firmly established for over a decade, and the new variant Kreyvium have an excellent performance.

show abstract

“…This was done by inserting some key information into the keystream generation function [1]. As an example, a stream cipher called Sprout was presented.…”

Section: Introductionmentioning

confidence: 99%

On Design of Robust Lightweight Stream Cipher with Short Internal State

Banik

Isobe

Morii

2018

IEICE Trans. Fundamentals

View full text Add to dashboard Cite

SUMMARYThe stream cipher Sprout with a short internal state was proposed in FSE 2015. Although the construction guaranteed resistance to generic Time Memory Data Tradeoff attacks, there were some weaknesses in the design and the cipher was completely broken. In this paper we propose a family of stream ciphers LILLE in which the size of the internal state is half the size of the secret key. Our main goal is to develop robust lightweight stream cipher. To achieve it, our cipher based on the two-key Even Mansour construction and thus its security against key/state recovery attacks reduces to a well analyzed problem. We also prove that like Sprout, the construction is resistant to generic Time Memory Data Tradeoff attacks. Unlike Sprout, the construction of the cipher guarantees that there are no weak key-IV pairs which produce a keystream sequence with short period or which make the algebraic structure of the cipher weaker and easy to cryptanalyze. The reference implementations of all members of the LILLE family with standard cell libraries based on the STM 90nm and 65 nm processes were also found to be smaller than Grain v1 while security of LILLE family depend on reliable problem in the symmetric cryptography.

show abstract

On Lightweight Stream Ciphers with Shorter Internal States

Cited by 73 publications

References 30 publications

Stream cipher designs: a review

Stream cipher designs: a review

Stream Ciphers: A Practical Solution for Efficient Homomorphic-Ciphertext Compression

On Design of Robust Lightweight Stream Cipher with Short Internal State

Contact Info

Product

Resources

About