Re: VMPC

From: David Eather <eather@xxxxxxxxxx>
Date: Thu, 29 Mar 2007 23:46:35 +1000

tor@xxxxxx wrote:

On 2007-03-28, fortune.bruce@xxxxxxxxx <fortune.bruce@xxxxxxxxx> wrote:
Of course, AES is a better choice. But I was trying to generate
discussion on VMPC, which to coin Paul Rubin's description of RC4, is
almost hypnotically simple in its construction.

Like RC4, it is possible to code VMPC from memory.

The same applies to many unbroken stream ciphers, the most memorable of
which is probably Trivium.

Isn't Trivium is a block cipher?

As Kristian stated above, there is no clear technical benefit to be had
by deploying something that is known to have serious weaknesses. RC4 is
a special case that is in widespread use, but this is mainly for social
and historical reasons, not because it is superior from a cryptological
point of view.

/Tor

References:
- VMPC
  - From: Bartosz Wójcik
- Re: VMPC
  - From: Wei Dai
- Re: VMPC
  - From: fortune . bruce
- Re: VMPC
  - From: Kristian Gjøsteen
- Re: VMPC
  - From: fortune . bruce
- Re: VMPC
  - From: tor

Prev by Date: Re: VMPC
Next by Date: fs module or kernel recompile
Previous by thread: Re: VMPC
Next by thread: Re: VMPC
Index(es):
- Date
- Thread

Relevant Pages

Re: About VMPC
... recovering the internal state of RC4 by [Knudsen, Meier, Preneel, ... VMPC one-way function, for example if we assume that s is the argument ... in case any weakness was found in the cipher in the future. ... over RC4 but they also said that RC4A would still fail the Golic's ...
(sci.crypt)
About VMPC
... Some days ago i looked at the documentation about VMPC, ... interesting since add further levels of non linearity compared to RC4 ... is a 257-byte array indexed by numbers from 0 to 256, ... about 256**212 so keys up to 212 bytes would teorically have sense, ...
(sci.crypt)
Re: Best way to salt RC4?
... You might find it convenient to use VMPC instead of RC4. ... The cons of VMPC compares to RC4 is that it is less broadly analysed ... Bartosz Zoltak ...
(sci.crypt)
Re: RC4 hygiene
... Zoltak may certainly explain it better (he also uses a modified KSA ... the RC4 box, is a non linear process that let the RC4 box in a ... But I still think Zoltak method it's very clever because fix the RC4 ... have to deal with an IV, not only about VMPC), so we can not ...
(sci.crypt)
Re: Looking for Streaming Cipher alternative to Blowfish
... consider new designs - you can look at VMPC. ... RC4 or any other cipher mentioed here. ... VMPC is documented in a paper "VMPC Stream Cipher" avilable at ...
(sci.crypt)