南京理工大学学报(自然科学版)2016,Vol.40Issue(4):450-454,5.DOI:10.14177/j.cnki.32-1397n.2016.40.04.012
祖冲之序列密码的线性区分攻击分析
Linear distinguishing attack analysis on ZUC stream cipher
摘要
Abstract
In order to probe into the security of the ZUC algorithm,linear distinguishing attack on the ZUC algorithm is proposed. In this paper, we first consider the linear approximation of 2-round nonlinear function F and get linear approximation equation,and the best advantage of the linear ap-proximation equation is 2-22. 6 . By combining those linear approximations,we establish a distinguisher only depending on the keystream. In order to get the best advantage of distinguisher,we search the best linear masking and the best advantage of the distinguisher is about 2-65. 5 . The result shows that the key stream generated by ZUC is distinguishable from a random sequence after observing approximately O(2131 ) bits,and it proves that the ZUC algorithm is safe. By comparison,the result of the linear distinguishing attack is superior to other attacks.关键词
祖冲之算法/线性区分攻击/线性逼近/区分器/线性掩码Key words
ZUC/linear distinguishing attack/linear approximation/distinguisher/linear masking分类
信息技术与安全科学引用本文复制引用
汤永利,韩娣,闫玺玺,叶青,李子臣..祖冲之序列密码的线性区分攻击分析[J].南京理工大学学报(自然科学版),2016,40(4):450-454,5.基金项目
国家自然科学基金(61370188 ()
61300216) ()
河南省科技厅国际科技合作计划(152102410048) (152102410048)
河南省基础与前沿技术研究(142300410147) (142300410147)
河南省教育厅自然科学项目(12A520021) (12A520021)
河南理工大学博士基金(B2013-043 ()
B2014-044) ()
