A Weakness of the Linear Part of Stream Cipher MUGI

Golić, Jovan Dj.

doi:10.1007/978-3-540-25937-4_12

Jovan Dj. Golić¹⁷

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3017))

Included in the following conference series:

International Workshop on Fast Software Encryption

2195 Accesses

Abstract

The linearly updated component of the stream cipher MUGI, called the buffer, is analyzed theoretically by using the generating function method. In particular, it is proven that the intrinsic response of the buffer, without the feedback from the nonlinearly updated component, consists of binary linear recurring sequences with small linear complexity 32 and with extremely small period 48. It is then shown how this weakness can in principle be used to facilitate the linear cryptanalysis of MUGI with two main objectives: to reconstruct the secret key and to find linear statistical distinguishers.

Download to read the full chapter text

Chapter PDF

Cryptanalysis of the Full Spritz Stream Cipher

An Application of Hadamard Transform to Test Stream Ciphers

Dynamic Ciphering-15 Based on Multiplicative Polynomial Inverses Over Galois Field GF(73)

Keywords

References

Daemen, J., Claap, C.: Fast hashing and stream encryption with PANAMA. In: Vaudenay, S. (ed.) FSE 1998. LNCS, vol. 1372, pp. 60–74. Springer, Heidelberg (1998)
Chapter Google Scholar
Daemen, J., Rijmen, V.: The Design of Rijndael: AES - The Advanced Encryption Standard. Springer, Berlin (2002)
MATH Google Scholar
Golić, J.D.: Correlation via linear sequential circuit approximation of combiners with memory. In: Rueppel, R.A. (ed.) EUROCRYPT 1992. LNCS, vol. 658, pp. 124–137. Springer, Heidelberg (1993)
Chapter Google Scholar
Golić, J.D.: Linear cryptanalysis of stream ciphers. In: Preneel, B. (ed.) FSE 1994. LNCS, vol. 1008, pp. 154–169. Springer, Heidelberg (1995)
Google Scholar
Golić, J.D.: Correlation properties of a general combiner with memory. Journal of Cryptology 9, 111–126 (1996)
Article MATH Google Scholar
Golić, J.D.: Linear models for keystream generators. IEEE Transactions on Computers 45, 41–49 (1996)
Article MATH Google Scholar
Matsui, M.: Linear cryptanalysis method for DES cipher. In: Helleseth, T. (ed.) EUROCRYPT 1993. LNCS, vol. 765, pp. 159–169. Springer, Heidelberg (1994)
Google Scholar
Watanabe, D., Furuya, S., Yoshida, H., Takaragi, K.: MUGI Pseudorandom number generator, Specification, Ver. 1.2 (2001), available at http://www.sdl.hitachi.co.jp/crypto/mugi/index-e.html
Watanabe, D., Furuya, S., Yoshida, H., Takaragi, K.: MUGI Pseudorandom number generator, Self-evaluation report, Ver. 1.1 (2001), available at http://www.sdl.hitachi.co.jp/crypto/mugi/index-e.html
Watanabe, D., Furuya, S., Yoshida, H., Takaragi, K., Preneel, B.: A new keystream generator MUGI. In: Daemen, J., Rijmen, V. (eds.) FSE 2002. LNCS, vol. 2365, pp. 179–194. Springer, Heidelberg (2002)
Chapter Google Scholar

Download references

Author information

Authors and Affiliations

System on Chip, Telecom Italia Lab, Telecom Italia, Via Reiss Romoli 274, I-10148, Turin, Italy
Jovan Dj. Golić

Authors

Jovan Dj. Golić
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Indian Statistical Institute, Applied Statistics Unit, 203 B T Road, 700 108, Kolkata, India
Bimal Roy
FHNW, Windisch, Switzerland
Willi Meier

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Golić, J.D. (2004). A Weakness of the Linear Part of Stream Cipher MUGI. In: Roy, B., Meier, W. (eds) Fast Software Encryption. FSE 2004. Lecture Notes in Computer Science, vol 3017. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-25937-4_12

Download citation

DOI: https://doi.org/10.1007/978-3-540-25937-4_12
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-22171-5
Online ISBN: 978-3-540-25937-4
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics