Analysis of Xorrotation With Application to an HC-128 Variant

Stankovski, Paul; Hell, Martin; Johansson, Thomas

Analysis of Xorrotation With Application to an HC-128 Variant

Mark

Stankovski, Paul ^LU

; Hell, Martin ^LU and Johansson, Thomas ^LU

(2012) ACISP 2012 7372. p.419-425

Abstract: Many cryptographic primitives rely on word rotations (R) and xor (X) to provide proper mixing. We give RX-system mixing a very general treatment and deduce some theoretical results on related probability distributions.

Pure RX-systems are easy to break, so we show how to apply our theory to a more complex system that uses RX operations in combination with S-boxes.

We construct an impractical (keystream complexity 2^{90.9}), but new and non-trivial distinguisher for a variant of HC-128 for which modular addition is replaced with xor.

Please use this url to cite or link to this publication: https://lup.lub.lu.se/record/2701846

author

Stankovski, Paul ^LU

; Hell, Martin ^LU and Johansson, Thomas ^LU

organization

publishing date

2012

type

Chapter in Book/Report/Conference proceeding

publication status

published

subject

Electrical Engineering, Electronic Engineering, Information Engineering

keywords

RX, probability distribution, stream cipher, HC-128, cryptanalysis, distinguisher

host publication

LNCS

editor

Susilo, Willy ; Mu, Yi and Seberry, Jennifer

volume

7372

pages

419 - 425

publisher

Springer

conference name

ACISP 2012

conference location

Wollongong, Australia

conference dates

2012-07-09

external identifiers

scopus:84864799244

ISBN

978-3-642-31447-6

language

English

LU publication?

yes

id

317c77cd-b630-469e-8186-801128c9d75a (old id 2701846)

date added to LUP

2016-04-04 10:23:30

date last changed

2025-10-14 09:17:09

@inproceedings{317c77cd-b630-469e-8186-801128c9d75a,
  abstract     = {{Many cryptographic primitives rely on word rotations (R) and xor (X) to provide proper mixing. We give RX-system mixing a very general treatment and deduce some theoretical results on related probability distributions. <br/><br>
Pure RX-systems are easy to break, so we show how to apply our theory to a more complex system that uses RX operations in combination with S-boxes.<br/><br>
We construct an impractical (keystream complexity 2^{90.9}), but new and non-trivial distinguisher for a variant of HC-128 for which modular addition is replaced with xor.}},
  author       = {{Stankovski, Paul and Hell, Martin and Johansson, Thomas}},
  booktitle    = {{LNCS}},
  editor       = {{Susilo, Willy and Mu, Yi and Seberry, Jennifer}},
  isbn         = {{978-3-642-31447-6}},
  keywords     = {{RX; probability distribution; stream cipher; HC-128; cryptanalysis; distinguisher}},
  language     = {{eng}},
  pages        = {{419--425}},
  publisher    = {{Springer}},
  title        = {{Analysis of Xorrotation With Application to an HC-128 Variant}},
  url          = {{https://lup.lub.lu.se/search/files/5527664/2701852.pdf}},
  volume       = {{7372}},
  year         = {{2012}},
}

Lund University Publications

LUND UNIVERSITY LIBRARIES

Analysis of Xorrotation With Application to an HC-128 Variant