International Conference on the Theory and Application of Cryptology and Information Security

ASIACRYPT 2008: Advances in Cryptology - ASIACRYPT 2008 pp 524-538

Cryptanalysis of Sosemanuk and SNOW 2.0 Using Linear Masks

  • Jung-Keun Lee
  • Dong Hoon Lee
  • Sangwoo Park
Conference paper

DOI: 10.1007/978-3-540-89255-7_32

Volume 5350 of the book series Lecture Notes in Computer Science (LNCS)

Abstract

In this paper, we present a correlation attack on Sosemanuk with complexity less than 2150. Sosemanuk is a software oriented stream cipher proposed by Berbain et al. to the eSTREAM call for stream cipher and has been selected in the final portfolio. Sosemanuk consists of a linear feedback shift register(LFSR) of ten 32-bit words and a finite state machine(FSM) of two 32-bit words. By combining linear approximation relations regarding the FSM update function, the FSM output function and the keystream output function, it is possible to derive linear approximation relations with correlation − 2− 21.41 involving only the keystream words and the LFSR initial state. Using such linear approximation relations, we mount a correlation attack with complexity 2147.88 and success probability 99% to recover the initial internal state of 384 bits. We also mount a correlation attack on SNOW 2.0 with complexity 2204.38.

Keywords

stream cipherSosemanukSNOW 2.0correlation attacklinear mask
Download to read the full conference paper text

Copyright information

© Springer-Verlag Berlin Heidelberg 2008

Authors and Affiliations

  • Jung-Keun Lee
    • 1
  • Dong Hoon Lee
    • 1
  • Sangwoo Park
    • 1
  1. 1.ETRI Network & Communication Security DivisionDaejeonKorea