Related-key chosen IV attacks on grain-v1 and grain-128

Yuseop Lee; Kitae Jeong; Jaechul Sung; Seokhie Hong

doi:10.1007/978-3-540-70500-0-24

Related-key chosen IV attacks on grain-v1 and grain-128

Yuseop Lee, Kitae Jeong, Jaechul Sung, Seokhie Hong

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

49 Citations (Scopus)

Abstract

The slide resynchronization attack on Grain was proposed in [6]. This attack finds related keys and initialization vectors of Grain that generate the 1-bit shifted keystream sequence. In this paper, we extend the attack proposed in [6] and propose related-key chosen IV attacks on Grain-v1 and Grain-128. The attack on Grain-v1 recovers the secret key with 2^22.59 chosen IVs, 2^26.29-bit keystream sequences and 2^22.90 computational complexity. To recover the secret key of Grain-128, our attack requires 2 ^26.59 chosen IVs, 2^31.39-bit keystream sequences and 2^27.01 computational complexity. These works are the first known key recovery attacks on Grain-v1 and Grain-128.

Original language	English
Title of host publication	Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings
Pages	321-335
Number of pages	15
DOIs	https://doi.org/10.1007/978-3-540-70500-0-24
Publication status	Published - 2008
Event	13th Australasian Conference on Information Security and Privacy, ACISP 2008 - Wollongong, NSW, Australia Duration: 2008 Jul 7 → 2008 Jul 9

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	5107 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	13th Australasian Conference on Information Security and Privacy, ACISP 2008
Country	Australia
City	Wollongong, NSW
Period	08/7/7 → 08/7/9

Keywords

Cryptanalysis
Grain-128
Grain-v1
Related-key chosen IV attack
Stream cipher

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-540-70500-0-24

Fingerprint Dive into the research topics of 'Related-key chosen IV attacks on grain-v1 and grain-128'. Together they form a unique fingerprint.

Cite this

Lee, Y., Jeong, K., Sung, J., & Hong, S. (2008). Related-key chosen IV attacks on grain-v1 and grain-128. In Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings (pp. 321-335). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5107 LNCS). https://doi.org/10.1007/978-3-540-70500-0-24

Related-key chosen IV attacks on grain-v1 and grain-128. / Lee, Yuseop; Jeong, Kitae; Sung, Jaechul; Hong, Seokhie.

Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings. 2008. p. 321-335 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5107 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Lee, Y, Jeong, K, Sung, J & Hong, S 2008, Related-key chosen IV attacks on grain-v1 and grain-128. in Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 5107 LNCS, pp. 321-335, 13th Australasian Conference on Information Security and Privacy, ACISP 2008, Wollongong, NSW, Australia, 08/7/7. https://doi.org/10.1007/978-3-540-70500-0-24

Lee Y, Jeong K, Sung J, Hong S. Related-key chosen IV attacks on grain-v1 and grain-128. In Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings. 2008. p. 321-335. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-540-70500-0-24

@inproceedings{1387d1650b5d493baf3b2ae14f800fcf,

title = "Related-key chosen IV attacks on grain-v1 and grain-128",

abstract = "The slide resynchronization attack on Grain was proposed in [6]. This attack finds related keys and initialization vectors of Grain that generate the 1-bit shifted keystream sequence. In this paper, we extend the attack proposed in [6] and propose related-key chosen IV attacks on Grain-v1 and Grain-128. The attack on Grain-v1 recovers the secret key with 222.59 chosen IVs, 226.29-bit keystream sequences and 222.90 computational complexity. To recover the secret key of Grain-128, our attack requires 2 26.59 chosen IVs, 231.39-bit keystream sequences and 227.01 computational complexity. These works are the first known key recovery attacks on Grain-v1 and Grain-128.",

keywords = "Cryptanalysis, Grain-128, Grain-v1, Related-key chosen IV attack, Stream cipher",

author = "Yuseop Lee and Kitae Jeong and Jaechul Sung and Seokhie Hong",

year = "2008",

doi = "10.1007/978-3-540-70500-0-24",

language = "English",

isbn = "3540699716",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "321--335",

booktitle = "Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings",

note = "13th Australasian Conference on Information Security and Privacy, ACISP 2008 ; Conference date: 07-07-2008 Through 09-07-2008",

}

TY - GEN

T1 - Related-key chosen IV attacks on grain-v1 and grain-128

AU - Lee, Yuseop

AU - Jeong, Kitae

AU - Sung, Jaechul

AU - Hong, Seokhie

PY - 2008

Y1 - 2008

N2 - The slide resynchronization attack on Grain was proposed in [6]. This attack finds related keys and initialization vectors of Grain that generate the 1-bit shifted keystream sequence. In this paper, we extend the attack proposed in [6] and propose related-key chosen IV attacks on Grain-v1 and Grain-128. The attack on Grain-v1 recovers the secret key with 222.59 chosen IVs, 226.29-bit keystream sequences and 222.90 computational complexity. To recover the secret key of Grain-128, our attack requires 2 26.59 chosen IVs, 231.39-bit keystream sequences and 227.01 computational complexity. These works are the first known key recovery attacks on Grain-v1 and Grain-128.

AB - The slide resynchronization attack on Grain was proposed in [6]. This attack finds related keys and initialization vectors of Grain that generate the 1-bit shifted keystream sequence. In this paper, we extend the attack proposed in [6] and propose related-key chosen IV attacks on Grain-v1 and Grain-128. The attack on Grain-v1 recovers the secret key with 222.59 chosen IVs, 226.29-bit keystream sequences and 222.90 computational complexity. To recover the secret key of Grain-128, our attack requires 2 26.59 chosen IVs, 231.39-bit keystream sequences and 227.01 computational complexity. These works are the first known key recovery attacks on Grain-v1 and Grain-128.

KW - Cryptanalysis

KW - Grain-128

KW - Grain-v1

KW - Related-key chosen IV attack

KW - Stream cipher

UR - http://www.scopus.com/inward/record.url?scp=70349858082&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=70349858082&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-70500-0-24

DO - 10.1007/978-3-540-70500-0-24

M3 - Conference contribution

AN - SCOPUS:70349858082

SN - 3540699716

SN - 9783540699712

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 321

EP - 335

BT - Information Security and Privacy - 13th Australasian Conference, ACISP 2008, Proceedings

T2 - 13th Australasian Conference on Information Security and Privacy, ACISP 2008

Y2 - 7 July 2008 through 9 July 2008

ER -