Re: Stream cipher against block cipher

From: AE (hidden_at_nospam.com)
Date: 06/27/03

• Next message: AE: "Re: Surviving Einstein."
• Previous message: Tom St Denis: "Re: Random number generation"
• In reply to: Douglas A. Gwyn: "Re: Stream cipher against block cipher"
• Next in thread: Douglas A. Gwyn: "Re: Stream cipher against block cipher"
• Reply: Douglas A. Gwyn: "Re: Stream cipher against block cipher"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 27 Jun 2003 18:55:40 +0200

Douglas A. Gwyn wrote:
> AE wrote:
>
>>You can create a stream cipher from a block cipher by running it in CTR,
>>OFB or CFB mode, but it is not that simple to construct a block cipher
>>from a stream cipher.
>
> Actually it's easier.

Well - I followed the thread concerning how to create a block cipher
from a stream cipher, but nothing I've seen there looked promising:

While in theory it is possible to use a stream cipher as the round
function this reduces the number of possible stream ciphers to the ones
with fast key scheduling and that way to ones with weak key scheduling -
not an easy task to estimate the cryptographic strength of that
construction.

>>Most stream ciphers don't allow you to add a IV ...
>
> Sure they do.

Which ones? SEAL? RC4? WAKE? any LFSR-construction?

Most times the IV is concatenated with the key, allowing attacks on the
key scheduling.

>>Maybe even more important is that there is much more public knowledge
>>concerning block ciphers than concerning stream ciphers.
>
> Proof by example?

Just have a look at the papers published or on the sources you'll find
in the network - you'll find more than twice as many papers concerning
block ciphers than concerning stream ciphers.

That's surely not because there's not more to tell about stream ciphers
or because stream ciphers are easier to implement or somebody would have
managed to submit a stream cipher to Nessie that was not faulty.

AE

• Next message: AE: "Re: Surviving Einstein."
• Previous message: Tom St Denis: "Re: Random number generation"
• In reply to: Douglas A. Gwyn: "Re: Stream cipher against block cipher"
• Next in thread: Douglas A. Gwyn: "Re: Stream cipher against block cipher"
• Reply: Douglas A. Gwyn: "Re: Stream cipher against block cipher"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Edon16 - crypto library for testing ... >> stream cipher, a secure hash function and a secure pseudo random ... squares also a latin square? ... the block cipher seems to work on ... (sci.crypt) Re: convert stream ciphers into block ciphers ... :>like a four-round Feistel construction required, to make a stream cipher ... The word "secure" means two different things ... Mr. Gwyn has a legitimate objection to a claim that "secure" means ... and the definition of a block cipher specifically ... (sci.crypt) Re: and now for something completely different. ... stream cipher works on one byte at a time and a block cipher works on ... P.P.S. while as there are generic ways of building PRP out of PRF as ... well as generic ways of building PRF out of PRP, ... (sci.crypt) Re: .NET DES CFB - useless interface? ... >you to use a block cipher like a stream cipher. ... CryptoAPI the feedback also defaults to CFB-8 rather than CFB-64. ... (sci.crypt) Re: .NET DES CFB - useless interface? ... >you to use a block cipher like a stream cipher. ... CryptoAPI the feedback also defaults to CFB-8 rather than CFB-64. ... (microsoft.public.dotnet.security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint