Passive–Only Key Recovery Attacks on RC4

Vaudenay, Serge; Vuagnoux, Martin

doi:10.1007/978-3-540-77360-3_22

Cited by 43 publications

(40 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It is revealed that the proposed proposed RC4 has two internal states and has removed some of the byte biases which are the foundation of many security attacks on RC4 and is also faster than the existing conventional RC4. -short related keys attack [14] -TWP WEP attack [28] -VV WEP attack [29] Hill climb search attack [39] 2008 -Difference equations [19] -bit by bit approach attack [21] --generative pattern [40] -iterative probabilistic attack [41] Maitra and Paul conditional Bias [56] In [64] authors have proposed a new variant of RC4 called Quad-RC4 without changing the basic structure of conventional RC4. The proposed RC4 structure promises the reasonable security and a high throughput.…”

Section: Enhancements In Rc4 Stream Ciphermentioning

confidence: 99%

A Survey on RC4 Stream Cipher

Jindal

Singh²

2015

IJCNIS

View full text Add to dashboard Cite

Abstract-RC4 is one of the most widely used stream cipher due to its simplicity, speed and efficiency. In this paper we have presented a chronological survey of RC4 stream cipher demonstrating its weaknesses followed by the various RC4 enhancements from the literature. From the recently observed cryptanalytic attempts on RC4 it is established that innovative research efforts are required to develop secure RC4 algorithm, which can remove the weaknesses of RC4, such as biased bytes, key collisions, and key recovery attacks specifically on WEP and WPA. These flaws in RC4 are offering open challenge for developers. Hence our chronological survey corroborates the fact that even though researchers are working on RC4 stream cipher since last two decades, it still offers a plethora of research issues related to statistical weaknesses in either state or keystream.

show abstract

Section: Enhancements In Rc4 Stream Ciphermentioning

confidence: 99%

A Survey on RC4 Stream Cipher

Jindal

Singh²

2015

IJCNIS

View full text Add to dashboard Cite

show abstract

“…WEP [14]). Subsequently, there have been series of improvements [17,11,34,38] in this direction, exploiting the propagation of weak key patterns to the keystream output bytes.…”

Section: Existing Weaknessesmentioning

confidence: 99%

“…The main directions of cryptanalysis in this area are 1. finding correlations between the keystream output bytes and the secret key [31,39,24,15] and key recovery in the IV mode [6,17,11,34,38] (these exploit the weaknesses of both the KSA and the PRGA), 2. recovering the RC4 permutation from the keystream output bytes [12,35,21] and 3. identifying distinguishers [16,29,18].…”

Section: Prga + : Modifications To Rcprgamentioning

confidence: 99%

Analysis of RC4 and Proposal of Additional Layers for Better Security Margin

Maitra

Paul

2008

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. In this paper, the RC4 Key Scheduling Algorithm (KSA) is theoretically studied to reveal non-uniformity in the expected number of times each value of the permutation is touched by the indices i, j. Based on our analysis and the results available in literature regarding the existing weaknesses of RC4, few additional layers over the RC4 KSA and RC4 Pseudo-Random Generation Algorithm (PRGA) are proposed. Analysis of the modified cipher (we call it RC4 + ) shows that this new strategy avoids existing weaknesses of RC4.

show abstract

“…recovering the internal state from the known keystream segment. Another type of attack on RC4 is key recovery attack when the secret key contains a known initialization vector part and the attacker has access to the keystreams of many (chosen) initialization vectors for the same unknown key part, see [8] for a recent attack.…”

Section: Description Of Rc4 and Notationsmentioning

confidence: 99%