Re: Weakness of Feistel ciphers

From: daw@xxxxxxxxxxxxxxxxxxxxxxxx (David Wagner)
Date: Wed, 19 Apr 2006 14:47:09 +0000 (UTC)

Kim G. S. Øyhus wrote:

what happened in my tests, done while developing my ciphers,
was that in those Feistel ciphers of mine, the codes remained clustered.
Similar codes remained similar, and they did not become less similar with
increasing number of rounds. They even increased clustering.

It seems most likely that there is something wrong in your choice
of round function or in your implementation of the cipher. There's
nothing wrong with the Feistel structure, if you choose a strong enough
round function and adequate key schedule (this can be proven; see Luby
and Rackoff's result).

Care to share the definition of your Feistel cipher design? Perhaps
we can point out the problem in your choice of round function, key
schedule, or implementation.
.

References:
- Weakness of Feistel ciphers
  - From: Kim G. S. Øyhus

Prev by Date: Weakness of Feistel ciphers
Next by Date: Re: Weakness of Feistel ciphers
Previous by thread: Weakness of Feistel ciphers
Next by thread: Re: Weakness of Feistel ciphers
Index(es):
- Date
- Thread

Relevant Pages

Re: Weakness of Feistel ciphers
... was that in those Feistel ciphers of mine, ... They even increased clustering. ... That suggests that your round function (i.e. the function that you run ...
(sci.crypt)
Re: Weakness of Feistel ciphers
... was that in those Feistel ciphers of mine, ... That suggests that your round function (i.e. the function that you run ... complicated than swapping the Feistel blocks, ...
(sci.crypt)
Re: Weakness of Feistel ciphers
... Kim G. S. Øyhus wrote: ... was that in those Feistel ciphers of mine, ... They even increased clustering. ... My own pseudo random generators. ...
(sci.crypt)