An improved distinguisher for Dragon

Joe Cho; Josef Pieprzyk

An improved distinguisher for Dragon

School of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

Abstract

The Dragon stream cipher is one of the focus ciphers which have reached Phase 2 of the eSTREAM project. In this paper, we present a new method of building a linear distinguisher for Dragon. The distinguisher is constructed by exploiting the biases of two S-boxes and the modular addition which are basic components of the nonlinear function F. The bias of the distinguisher is estimated to be around 2(-75.32) which is better than the bias of the distinguisher presented by Englund and Maximov. We have shown that Dragon is distinguishable from a random cipher by using around 2(150.6) keystream words and 2(64) memory. In addition, we present a very efficient algorithm for computing the bias of linear approximation of modular addition.

Original language	English
Title of host publication	Coding and cryptology
Subtitle of host publication	proceedings of the first international workshop Wuyi Mountain, Fujian, China, 11 – 15 June 2007
Editors	Yongqing Li, San Ling, Harald Niederreiter, Huaxiong Wang, Chaoping Xing, Shengyuan Zhang
Place of Publication	Singapore; London
Publisher	World Scientific Publishing
Pages	91-108
Number of pages	18
Volume	4
ISBN (Print)	9789812832238
Publication status	Published - 2008
Event	1st International Workshop on Coding and Cryptology - Fujian, China Duration: 11 Jun 2007 → 15 Jun 2007

Publication series

Name	Series on coding theory and cryptology
Publisher	World Scientific Publishing Co.
Volume	4
ISSN (Print)	1793-2238

Conference

Conference	1st International Workshop on Coding and Cryptology
Country/Territory	China
City	Fujian
Period	11/06/07 → 15/06/07

Keywords

Stream Ciphers
eSTREAM
Dragon
Distinguishing Attacks
Modular Addition

Cite this

Cho, Joe ; Pieprzyk, Josef. / An improved distinguisher for Dragon. Coding and cryptology: proceedings of the first international workshop Wuyi Mountain, Fujian, China, 11 – 15 June 2007. editor / Yongqing Li ; San Ling ; Harald Niederreiter ; Huaxiong Wang ; Chaoping Xing ; Shengyuan Zhang. Vol. 4 Singapore; London : World Scientific Publishing, 2008. pp. 91-108 (Series on coding theory and cryptology).

@inproceedings{67ca850b67fd4c1db9e08c7d89872e30,

title = "An improved distinguisher for Dragon",

abstract = "The Dragon stream cipher is one of the focus ciphers which have reached Phase 2 of the eSTREAM project. In this paper, we present a new method of building a linear distinguisher for Dragon. The distinguisher is constructed by exploiting the biases of two S-boxes and the modular addition which are basic components of the nonlinear function F. The bias of the distinguisher is estimated to be around 2(-75.32) which is better than the bias of the distinguisher presented by Englund and Maximov. We have shown that Dragon is distinguishable from a random cipher by using around 2(150.6) keystream words and 2(64) memory. In addition, we present a very efficient algorithm for computing the bias of linear approximation of modular addition.",

keywords = "Stream Ciphers, eSTREAM, Dragon, Distinguishing Attacks, Modular Addition",

author = "Joe Cho and Josef Pieprzyk",

year = "2008",

language = "English",

isbn = "9789812832238",

volume = "4",

series = "Series on coding theory and cryptology",

publisher = "World Scientific Publishing",

pages = "91--108",

editor = "Yongqing Li and San Ling and Harald Niederreiter and Huaxiong Wang and Chaoping Xing and Shengyuan Zhang",

booktitle = "Coding and cryptology",

address = "Singapore",

note = "1st International Workshop on Coding and Cryptology ; Conference date: 11-06-2007 Through 15-06-2007",

}

Cho, J & Pieprzyk, J 2008, An improved distinguisher for Dragon. in Y Li, S Ling, H Niederreiter, H Wang, C Xing & S Zhang (eds), Coding and cryptology: proceedings of the first international workshop Wuyi Mountain, Fujian, China, 11 – 15 June 2007. vol. 4, Series on coding theory and cryptology, vol. 4, World Scientific Publishing, Singapore; London, pp. 91-108, 1st International Workshop on Coding and Cryptology, Fujian, China, 11/06/07.

An improved distinguisher for Dragon. / Cho, Joe; Pieprzyk, Josef.
Coding and cryptology: proceedings of the first international workshop Wuyi Mountain, Fujian, China, 11 – 15 June 2007. ed. / Yongqing Li; San Ling; Harald Niederreiter; Huaxiong Wang; Chaoping Xing; Shengyuan Zhang. Vol. 4 Singapore; London: World Scientific Publishing, 2008. p. 91-108 (Series on coding theory and cryptology; Vol. 4).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - An improved distinguisher for Dragon

AU - Cho, Joe

AU - Pieprzyk, Josef

PY - 2008

Y1 - 2008

N2 - The Dragon stream cipher is one of the focus ciphers which have reached Phase 2 of the eSTREAM project. In this paper, we present a new method of building a linear distinguisher for Dragon. The distinguisher is constructed by exploiting the biases of two S-boxes and the modular addition which are basic components of the nonlinear function F. The bias of the distinguisher is estimated to be around 2(-75.32) which is better than the bias of the distinguisher presented by Englund and Maximov. We have shown that Dragon is distinguishable from a random cipher by using around 2(150.6) keystream words and 2(64) memory. In addition, we present a very efficient algorithm for computing the bias of linear approximation of modular addition.

AB - The Dragon stream cipher is one of the focus ciphers which have reached Phase 2 of the eSTREAM project. In this paper, we present a new method of building a linear distinguisher for Dragon. The distinguisher is constructed by exploiting the biases of two S-boxes and the modular addition which are basic components of the nonlinear function F. The bias of the distinguisher is estimated to be around 2(-75.32) which is better than the bias of the distinguisher presented by Englund and Maximov. We have shown that Dragon is distinguishable from a random cipher by using around 2(150.6) keystream words and 2(64) memory. In addition, we present a very efficient algorithm for computing the bias of linear approximation of modular addition.

KW - Stream Ciphers

KW - eSTREAM

KW - Dragon

KW - Distinguishing Attacks

KW - Modular Addition

M3 - Conference proceeding contribution

SN - 9789812832238

VL - 4

T3 - Series on coding theory and cryptology

SP - 91

EP - 108

BT - Coding and cryptology

A2 - Li, Yongqing

A2 - Ling, San

A2 - Niederreiter, Harald

A2 - Wang, Huaxiong

A2 - Xing, Chaoping

A2 - Zhang, Shengyuan

PB - World Scientific Publishing

CY - Singapore; London

T2 - 1st International Workshop on Coding and Cryptology

Y2 - 11 June 2007 through 15 June 2007

ER -

An improved distinguisher for Dragon

Abstract

Publication series

Conference

Keywords

Fingerprint

Cite this