Improved Key Recovery Attack on the BEAN Stream Cipher
Wang, Hui ; Hell, Martin LU ; Johansson, Thomas LU
and Ågren, Martin
LU
(2013)
In IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
E96A(6).
p.1437-1444
- Abstract
- BEAN is a newly proposed lightweight stream cipher adopting Fibonacci FCSRs. It is designed for very constrained environments and aims at providing a balance between security, efficiency and cost. A weakness in BEAN was first found by Ågren and Hell in 2011, resulting in a key recovery attack slightly better than brute force. In this paper, we present new correlations between state and keystream with large statistical advantage, leading to a much more efficient key recovery attack. The time and data complexities of this attack are 2^57.53 and 2^59.94, respectively. Moreover, two new output functions are provided as alternatives, which are more efficent than the function used in BEAN and are immune to all attacks proposed on the cipher.... (More)
- BEAN is a newly proposed lightweight stream cipher adopting Fibonacci FCSRs. It is designed for very constrained environments and aims at providing a balance between security, efficiency and cost. A weakness in BEAN was first found by Ågren and Hell in 2011, resulting in a key recovery attack slightly better than brute force. In this paper, we present new correlations between state and keystream with large statistical advantage, leading to a much more efficient key recovery attack. The time and data complexities of this attack are 2^57.53 and 2^59.94, respectively. Moreover, two new output functions are provided as alternatives, which are more efficent than the function used in BEAN and are immune to all attacks proposed on the cipher. Also, suggestions for improving the FCSRs are given. (Less)
Please use this url to cite or link to this publication:
https://lup.lub.lu.se/record/3630415
- author
- Wang, Hui
; Hell, Martin
LU
; Johansson, Thomas
LU
and Ågren, Martin
LU
- organization
- publishing date
- 2013
- type
- Contribution to journal
- publication status
- published
- subject
- keywords
- Stream cipher, key recovery attack, FCSR, BEAN.
- in
- IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
- volume
- E96A
- issue
- 6
- pages
- 1437 - 1444
- publisher
- IEICE
- external identifiers
-
- wos:000320014500048
- scopus:84878547468
- ISSN
- 0916-8508
- DOI
- 10.1587/transfun.E96.A.1437
- language
- English
- LU publication?
- yes
- id
- cb6cdbb0-02f1-4098-8095-ad2e8ddcc529 (old id 3630415)
- date added to LUP
- 2016-04-01 10:17:26
- date last changed
- 2023-08-30 22:57:01
@article{cb6cdbb0-02f1-4098-8095-ad2e8ddcc529,
abstract = {{BEAN is a newly proposed lightweight stream cipher adopting Fibonacci FCSRs. It is designed for very constrained environments and aims at providing a balance between security, efficiency and cost. A weakness in BEAN was first found by Ågren and Hell in 2011, resulting in a key recovery attack slightly better than brute force. In this paper, we present new correlations between state and keystream with large statistical advantage, leading to a much more efficient key recovery attack. The time and data complexities of this attack are 2^57.53 and 2^59.94, respectively. Moreover, two new output functions are provided as alternatives, which are more efficent than the function used in BEAN and are immune to all attacks proposed on the cipher. Also, suggestions for improving the FCSRs are given.}},
author = {{Wang, Hui and Hell, Martin and Johansson, Thomas and Ågren, Martin}},
issn = {{0916-8508}},
keywords = {{Stream cipher; key recovery attack; FCSR; BEAN.}},
language = {{eng}},
number = {{6}},
pages = {{1437--1444}},
publisher = {{IEICE}},
series = {{IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences}},
title = {{Improved Key Recovery Attack on the BEAN Stream Cipher}},
url = {{http://dx.doi.org/10.1587/transfun.E96.A.1437}},
doi = {{10.1587/transfun.E96.A.1437}},
volume = {{E96A}},
year = {{2013}},
}