Differential Fault Analysis of Salsa20

doi:10.3969/j.issn.1007130X.2011.

J4 ›› 2011, Vol. 33 ›› Issue (3): 7-12.doi: 10.3969/j.issn.1007130X.2011.

• 论文 • Previous Articles Next Articles

Differential Fault Analysis of Salsa20

SHEN Yancheng1,XIE Duanqiang1,LI Chao1,2

(1.School of Science,National University of Defense Technology,Changsha 410073;
2.State Key Laboratory of Information Security,Institute of Software,
Chinese Academy of Sciences,Beijing 100190,China)

Received:2010-06-17 Revised:2010-10-08 Online:2011-03-25 Published:2011-03-25

Abstract

Abstract:

Salsa20 is one of the finalists of the eSTREAM project. Its main feature is using the ARX operations (i.e. addition, rotation, and xor on 32bit words) to achieve good confusion and diffusion effects. At present, many cryptanalytic results on it are statistical cryptanalysis and differential cryptanalysis. In this paper, we further investigate a differential fault analysis of Salsa20/256. By adopting a random fault word model, when inducing 96 faults,the 186 bit key can be recovered with a probability close to 1,accordingly the complexity of recovering the full key bits of Salsa20/256 can be reduced to 270, which implies that Salsa20/256 is sensitive to the differential fault analasis.

Key words: stream cipher;Salsa20;differential fault analysis

SHEN Yancheng1,XIE Duanqiang1,LI Chao1,2. Differential Fault Analysis of Salsa20[J]. J4, 2011, 33(3): 7-12.

Differential Fault Analysis of Salsa20

PDF

Knowledge

Abstract

Cite this article

share this article

Related Articles 0

Recommended Articles

Metrics

Comments