[EN] Symmetric Algorithm - feistel vs SPN

-


Symmetric-Key Block Cipher



Designed to satisfy properties such as diffusion that hide the relationship between plaintext and ciphertext and confusions that hide the relationship between ciphertext and keys.




P-box(Permutation box) 

1. Straight P-box :  n=m
2. Expansion P-box :  n<m
3.Compression P-box :  n>m
(n-number of input bit // m-number of output bit)
(p-box is used for expansion of number of bits for many cases)
(no inverse function exists)





S-box(Substitution box)

n=m or n<>m(inverse function could be possibly existed or not)
1. shift
2. swap
3. split
4. combine
5. exclusive-OR







Product Cipher 
Product cipher is combine of the components of a p-box and s-box in order to cover two properties(Diffusion + Confusion).

1. Feistel Cipher 

There's two set : ant sets(working), grasshopper set(resting).
Only doing XOR and take it to swap is what grasshopper set is doing,
Taking half bits into Function and doing encryption is set ants.
BUT this set will be cross and sent it to next round.
(process of Encryption = process of Decryption )
DES,SEED(korean encryption standard)
ROUND>=3 + even number

Image result for feistel

Considerations for implementing symmetric block passwords
Block size : more than 128bit
Key size : 128bit
number of rounds : more than 16
Subkey Generation Algorithm
Round Function





2. SPN NETWORK 
(Substitution-Permutation Network)

 After dividing the input value into blocks + processing the S-box.
Take it to permutation(p-box) process with processed S-box.(process of Encryption = process of Decryption )
AES,ARIA
*available for Parallel processing
Image result for substitution permutation network






💁Possible attack for Block Cipher

1. differential Cryptanalysis

 This type of attack comes from the idea which is how could CipherText would be distinguished if you changed a part of the PlainText "CPA ATTACK"
CPA = chosen plaintext attack


2. Linear Cryptanalysis

Investigate the probability that several revisions of the plaintext and ciphertext bits of result which is zero, after XOR progress (Masui)  "KPA ATTACK"
KPA = known plaintext attack
After XOR process, probability for 0 will be 1/2
Investigating bits which is not in this 1/2 probability can help to get information about key.
Which means 
For linear detoxification, if you have found an approximate linear relationship,
This allows the transition from KPA to CPA.


3. exhaustive key search
4. statistical analysis
5. mathematical analysis




Stream Cipher



1. Synchronized stream cipher  

The key stream is independent of the plain text or cipher text.
Plaintext or ciphertext between key bits are irrelevant at all
ex)
👀 OTP(one time pad) 
Mathematically proofed that it is impossible to decipher by Shannon.
Literally a single-use pad, and every time you do an encoding, you're going to be able to create a random keystroke.
Unconditionally safe and theoretically unreadable.
Cryptographic and Decryption algorithms use Expensive ORs (reversely related to each other).


👀FSR(Feedback Shift Register) 

👀LFSR(Linear Feedback Shift Register) 

👀NLFSR(Non-Linear Feedback Shift Register) 









2. Asynchronized stream cipher 


The key stream is dependent on the plaintext or ciphertext.
This one method used to create different operating modes in block cipher which is
 cipher feedback mode (CFB), actually generates stream passwords.





Special features of strong stream cipher

 1. No repeatable value inside the keystream value for a long period of time (pseudorandom) 
2. Key stream is not linearly related to key. >(Finding the key stream value does not mean knowing the key value)






 ✊Considering the design of Stream Cipher

 1. The continuation of Encryption should have a long cycle.
The pseudo-random number generator will eventually use a function that produces a bit stream that is repeated one day.
The longer iteration cycles mean that deciphering the code is as difficult.

 2. Key stream is as similar as pseudo-random numbers.
3. You must be long enough to respond to an enterprise-wide attack.











Comments

Post a Comment

Popular posts from this blog

[KOR] 암호기법의 분류

-
Image
암호 기법의 분류 1) 치환 암호(Substitution cipher) vs 전치 암호(Transposition/permutation cipher) 치환암호 = 대치암호는 비트,문자,블록을 아예 다른 비트,문자,블록으로 대체 결국 PlainText의 집합과 CipherText의 집합은 같지 않다. 교환이 일대일로 이루어지지 않는다. 그에 반해  전치암호는 교환이 일대일로 이루어지며, PlainText의 위치를 여기저기 바꾸기만 한것!  즉, 재배열 2) 블록 암호(block cipher) vs 스트림 암호(stream cipher) 블록 암호 는 어느 특정 비트수의 집합을 한 번에 처리하는 암호 알고리즘을 총징한다.  이 집합을 block이라고 한다.  평문을 일정한 크기의 블록으로 잘라낸 후 ==> 암호화 알고리즘에 TOSS  일반적으로 블록의 크기는 8비트(아스키), 16비트(유니코드)에 비례!!  (스트림 암호와는 다르게 Round를 다룬다. 여기서 round는 댤걀을 스크램블할때 원래 원문인 생달걀을 얼마나 알아보기 힘들게 몇번의 round를 그리며 달걀을 풀것인가..! ) ☝block cipher의 장점 : 높은 확산, 기밀성, 해시함수 ex) DES, AES, IDEA, SEED, RC5 (RC4는 스트림)  스트림 암호 는 1비트 또는 1바이트의 데이터 흐름(stream)을 순차적으로 처리. 암호화 방식은 PlainText와 Key stream의 XOR 을 진행 후 CipherText 생성. ex) 0110 1010 - plaintext     1010 0010 - key stream  ====================      0011 0111 - ciphertext      1010 00...
Read more

[EN] DES, 3DES, AES

-
Image
☝DES(Data Encryption Standard) 1. Purpose : data encryption standard 2. method : substitution + permutation  3. Number of Round : 16회전( for each P-box,S-box ) 4. Reason to be crack : Key is way too short 5. key size : 56bit  ==> modified structure of feistel network  Plaintext size : 64bit // key size : 56bit // round : 16 Components of DES : 2 of permutation box (Initial permutation, Final permutation) + 16 of feistel round function Each round key will be newly generated 48 bit key with Round-key generator ( with initial 56 bit cipher key ) <<How each round function works>> components of DES function 1. Expansion P-box  2. key XOR 3. 8 different S-boxs 4. Straight P-box quick explanation : input 64 bit (block) will be divided into 32 bits as L,R With Expansion permutation, 32 bit is changed into 48 bit. Then proceed Exclusice or with reformed 48 key bit. After Exclusive or, ...
Read more