## Abstract

Rakaposhi is a synchronous stream cipher, which uses three main components: a non-linear feedback shift register (NLFSR), a dynamic linear feedback shift register (DLFSR) and a non-linear filtering function (NLF). NLFSR consists of 128 bits and is initialised by the secret key K. DLFSR holds 192 bits and is initialised by an initial vector (IV). NLF takes 8-bit inputs and returns a single output bit. The work identifies weaknesses and properties of the cipher. The main observation is that the initialisation procedure has the so-called sliding property. The property can be used to launch distinguishing and key recovery attacks. The distinguisher needs four observations of the related (K,IV) pairs. The key recovery algorithm allows to discover the secret key K after observing 2^{9} pairs of (K,IV). Based on the proposed related-key attack, the number of related (K,IV) pairs is 2^{(128+192)/4} pairs. Further the cipher is studied when the registers enter short cycles. When NLFSR is set to all ones, then the cipher degenerates to a linear feedback shift register with a non-linear filter. Consequently, the initial state (and Secret Key and IV) can be recovered with complexity 2^{63.87}. If DLFSR is set to all zeros, then NLF reduces to a low non-linearity filter function. As the result, the cipher is insecure allowing the adversary to distinguish it from a random cipher after 2^{17} observations of keystream bits. There is also the key recovery algorithm that allows to find the secret key with complexity 2^{54}.

Original language | English |
---|---|

Title of host publication | Information Security Practice and Experience - 9th International Conference, ISPEC 2013, Proceedings |

Editors | Robert H. Deng, Tao Feng |

Place of Publication | Heidelberg |

Publisher | Springer, Springer Nature |

Pages | 361-371 |

Number of pages | 11 |

Volume | 7863 LNCS |

ISBN (Print) | 9783642380327 |

DOIs | |

Publication status | Published - 2013 |

Event | 9th International Conference on Information Security Practice and Experience, ISPEC 2013 - Lanzhou, China Duration: 12 May 2013 → 14 May 2013 |

### Publication series

Name | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
---|---|

Volume | 7863 LNCS |

ISSN (Print) | 03029743 |

ISSN (Electronic) | 16113349 |

### Other

Other | 9th International Conference on Information Security Practice and Experience, ISPEC 2013 |
---|---|

Country | China |

City | Lanzhou |

Period | 12/05/13 → 14/05/13 |

## Keywords

- rakaposhi stream cipher
- related key attack
- weak state
- cryptanalysis
- distinguishing attack
- key recovery attack