Re: Key entropy, stream entropy, block entropy, block population entropy AKA uniique stream length

On 7 Feb, 14:14, David Taylor <davidt-n...@xxxxxxxxxx> wrote:
On 2007-02-07, j...@xxxxxxxx <j...@xxxxxxxx> wrote:





On 5 Feb, 23:26, rossum <rossu...@xxxxxxxxxxxx> wrote:
On 5 Feb 2007 09:36:28 -0800, j...@xxxxxxxx wrote:

I said that the "BLOCK ENTROPY" within a cipher AKA the way to create
a UNIQUE block by downmixing internal streams in a cipher can exceed
the keyentropy.

Then how can you decrypt a message? If the block entropy exceeds the
key entropy, then given the key the receiver cannot decide which of
the possible blocks the key can generate is the correct block to
decrypt with.

rossum

Keyexpanded shuffles/permuation ciphers are not key to block 1:1
ciphers.
They are key to stream 1:1 ciper

So there is really no problem, you have to know where you are in the
permutation cycle for the key that is all.

Then that's all an attacker needs to know to decrypt it too.

Now you are lying *BIG* and i am pretty sure you are aware of it,

You can not find out the other permutation vector, using the known one
you can not reverse the algorithm to find an earlier block backtrack.
You have no idea of the offset startvalues for the algorithm,

And most important of all you do not have any idea of the value in the
PRNG buffer.

How do you communicate this information to the other end without telling
the attacker? (Hint: if you do it secretly, it's essentially part of
the key)

There is no information to communicate, so there is no hint and you
probably missunderstod the subject or are deluded

If you think that an actual shuffle of a deck of byted need anything
to put out a new shuffled block you are misstaken, it doesn't even
need a counter.

*THIS IS A STREAM GENERATOR OUTPUT IN BLOCKS OF 256 BYTES, THE STREAM
IS BASED ON AN EXPANDED KEY*

We do not need to communicate any extra entropy or information just
the original KEY so both parties can generate the stream.

Jonas Thörnvall
--
David Taylor- Dölj citerad text -

- Visa citerad text -


.

Relevant Pages

  • Re: Key entropy, stream entropy, block entropy, block population entropy AKA uniique stream length
    ... the original KEY so both parties can generate the stream. ... If you are expanding the key without "any extra entropy" it must ... I do not know any cipher there it would make sense for this not to be ...
    (sci.crypt)
  • Re: An Encryption Method
    ... > that PRBG will be the part of the scheme to be attacked. ... Wouldn't a cipher ... > that can deal with any arbitrary bit stream as a plaintext be more ... etc. has NO relationship to the original message. ...
    (sci.crypt)
  • Re: Stream or Block cypher ? need your help to clarify ...
    ... different implementations of one cryptosystem ... A cryptosystem encrypting one bit at a time is clearly a stream ... When you stop calling the cryptosystem a stream cipher is ...
    (sci.crypt)
  • Re: A basic cryptanalysis question
    ... Take two general cipher that use independent ... > All encryption schemes are bijective, less you wouldn't be able to decrypt. ... You can also generate key stream in advance ... Where as BICOM mode is a block oriented transform where you cannot seek, ...
    (sci.crypt)
  • Re: Terminology question
    ... >> mean XORing the plaintext with the output of a PRG, ... >> a stream", in which case a block cipher in CBC mode is a stream ... RC4 is the only byte-oriented stream cipher I know of. ... Is this the same WAKE you speak of? ...
    (sci.crypt)
Quantcast