J. Golic, Linear statistical weakness of alleged RC4 keystream generator, Proc. of Eurocrypt'97, pp. 226--238, 1997. Home/Search Document Not in Database Summary Related Articles Check |
This paper is cited in the following contexts:
The number of initial states of the RC4 cipher with the same.. - Pudovkina (2003) (Correct)
....widely used stream cipher in software applications. It was designed by R. Rivest in 1987. There are several papers by analysis of RC4, where several attacks and vulnerabilities were described. Most of these attacks revolve around the concept of a distinguisher. The first distinguisher was Golic [1] that exploited correlation between z i and z i 2 . The results due to [2, 3] and their generalization [8] are of most practical importance. In [9] is introduced the idealized model of RC4 and considered the cipher as a random walk on a symmetric group. Mironov proved a necessary condition for ....
Golic, J. D, Linear Statistical Weakness of Alleged RC4 Keystream Generator. Advances in Cryptology -- EUROCRYPT '97.
(Not So) Random Shuffles of RC4 - Mironov (2002) (Correct)
....algorithm, namely XORing the plaintext with the output stream, is so simple, any algorithm that predicts a bit in the RC4 output can be used to launch an attack. Consequently, any statistical anomaly in the output stream is a potential vulnerability. The first weak distinguisher was Golic s [Goli97] that exploited a correlation between z i and z i 2 . Later, twelve much stronger correlations between consecutive bytes of the output stream were discovered by Fluhrer and McGrew [FM00] Two backtracking algorithms were independently proposed in [MT98] and [K 98] In this approach the attacker ....
....this number) appears to be just as reasonable a precaution. We recommend doing so in most applications. As a final remark we want to stress that the analysis of the idealized model of RC4 should on no account be accepted as a proof of its security. Many known vulnerabilities, such as weak attacks [Goli97,FM00] as well as results due to Fluhrer, Mantin, and Shamir are not captured by our model. 8 Acknowledgement This work would have never started without excellent talks given at Stanford by Glenn Durfee and Scott Fluhrer. I am extremely grateful to Dan Boneh and Persi Diaconis for numerous valuable ....
J. Golic. Linear statistical weakness of alleged RC4 keystream generator. In proceedings Eurocrypt '97, Lecture Notes in Computer Science, vol. 1233, Springer-Verlag, 1997.
MV3: A new word based stream cipher using - Rapid Mixing And (2006) (Correct)
No context found.
J. Golic, Linear statistical weakness of alleged RC4 keystream generator, Proc. of Eurocrypt'97, pp. 226--238, 1997.
Metaheuristic Search as a Cryptological Tool - Clark (2002) (Correct)
No context found.
J. D. Golic. Linear Statistical Weakness of Alleged RC4 Keystream Generator. In Walter Fumy, editor, Advances in Cryptology - EuroCrypt '97, Science Volume 1233.
Weaknesses in the Key Scheduling Algorithm of RC4 - Fluhrer, Mantin, Shamir (2001) (18 citations) (Correct)
No context found.
Goli'c. Linear statistical weakness of alleged RC4 keystream generator. In EUROCRYPT: Advances in Cryptology: Proceedings of EUROCRYPT, 1997.
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC