Re: New Random Number Generator for encryption

---

• From: Lev Dymchenko <levdymchenko@xxxxxxxxx>
• Date: Wed, 11 Aug 2010 19:26:05 -0700 (PDT)

---

On Aug 12, 2:12 am, "Joseph Ashwood" <ashw...@xxxxxxx> wrote:

"Mok-Kong Shen" <mok-kong.s...@xxxxxxxxxxx> wrote in message

news:i3tkjq$ofn$03$1@xxxxxxxxxxxxxxxxxxxx

Joseph Ashwood wrote:

........ It is extremely weak against differential
attacks.

A question quite OT: Could you give a pointer to a good
(easy to understand) paper on differential attacks on PRNGs?

I don't know of any convenient reference. I actually modeled it as a 1-bit
block cipher in CTR mode. I used the internal counter (I.e. the label for
the particles and a loop count) as the plaintext, the pRNG output is the
ciphertext, from there it is a fairly standard block cipher differential
attack. It works easily in this case becase there is a known counter
involved, from past the counter is only a single round.
                    Joe

I researched this attack just now and got interesting results. In
short, this attack is not successful, even if counter is known. You
only need not to select odd cube dimension. I will explain it on
update to rng article.
.

---

• Follow-Ups:
  • Re: New Random Number Generator for encryption
    • From: jbriggs444

• References:
  • New Random Number Generator for encryption
    • From: Lev Dymchenko
  • Re: New Random Number Generator for encryption
    • From: Joseph Ashwood
  • Re: New Random Number Generator for encryption
    • From: Lev Dymchenko
  • Re: New Random Number Generator for encryption
    • From: Joseph Ashwood
  • Re: New Random Number Generator for encryption
    • From: Mok-Kong Shen
  • Re: New Random Number Generator for encryption
    • From: Joseph Ashwood

• Prev by Date: Re: New Random Number Generator for encryption
• Next by Date: Re: New Random Number Generator for encryption
• Previous by thread: Re: New Random Number Generator for encryption
• Next by thread: Re: New Random Number Generator for encryption
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Countering chosen-plaintext attacks - heres those answers I sent you but I dont know if you got ... chosen-plaintext attack on an encryption scheme based on this MKS-mode ... of operation and a block cipher with poor chosen-plaintext security. ... (sci.crypt) Re: New Random Number Generator for encryption ... from there it is a fairly standard block cipher ... Do you think this attack will work? ... the evaluation of your PRNG. ... differential analysis publish a pseudo-code (or better C-code, ... (sci.crypt) Re: New Random Number Generator for encryption ... from there it is a fairly standard block cipher ... Do you think this attack will work? ... I am ignorant and my knowledge about differential analysis is very poor. ... rearrange initial sequence and extract sub sequences. ... (sci.crypt) Re: New Random Number Generator for encryption ... from there it is a fairly standard block cipher ... Do you think this attack will work? ... the evaluation of your PRNG. ... differential analysis publish a pseudo-code (or better C-code, ... (sci.crypt) Re: New Random Number Generator for encryption ... from there it is a fairly standard block cipher ... Do you think this attack will work? ... I am ignorant and my knowledge about differential analysis is very poor. ... take some bits from trajectory of one particle. ... (sci.crypt)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > sci.crypt  > 2010-08