| 二次指数发生器截位序列的密码分析 |
| |
| 引用本文: | 赵耀东,戚文峰. 二次指数发生器截位序列的密码分析[J]. 计算机工程, 2007, 33(17): 17-19 |
| |
| 作者姓名: | 赵耀东 戚文峰 |
| |
| 作者单位: | 郑州信息工程大学信息工程学院应用数学系,郑州,450002;郑州信息工程大学信息工程学院应用数学系,郑州,450002 |
| |
| 摘 要: | 二次指数发生器是一种广泛使用的伪随机数发生器。该文指出在已知移位b和模数p的条件下,若已知连续的wn满足| un wn|是一个很小的数时,在多数情况下可以恢复出二次指数发生器的乘子a。说明了若已知连续的wn满足| un wn|是一个很小的数时,在多数情况下可以恢复出二次指数发生器的乘子a和移位b。结论显示了将二次指数发生器直接应用于密码学必须十分慎重。
|
| 关 键 词: | 二次指数发生器 密码分析 格攻击 截位序列 |
| 文章编号: | 1000-3428(2007)17-0017-03 |
| 修稿时间: | 2007-01-31 |
Truncated Sequences Cryptanalysis of Quadratic Generator |
| |
| ZHAO Yao-dong,QI Wen-feng. Truncated Sequences Cryptanalysis of Quadratic Generator[J]. Computer Engineering, 2007, 33(17): 17-19 |
| |
| Authors: | ZHAO Yao-dong QI Wen-feng |
| |
| Affiliation: | Department of Applied Mathematics, School of Information Engineering, Zhengzhou Information Engineering University, Zhengzhou 450002 |
| |
| Abstract: | Quadratic generator is a kind of widely used pseudorandom number generator.This paper studies the cryptanalysis of the quadratic generator.It shows given the shift b,modular p and sufficiently many of the most significant bits of several sets of the form u_n,u_(n 1),u_(n 2),how to disclose the multiplier a and the initial value u_0,if u_n does not lie in a small set,where u_n,u_(n 1),u_(n 2)are outputs of the quadratic generator.Then it shows that given the modular p and sufficiently many of the most significant bits of several sets of the form u_n,u_(n 1),u_(n 2),u_(n 3),one may disclose the a,b and the initial value u_0 if u_n does not lie in another small set.The results of this paper show that it should be careful when quadratic generator is used in a cryptosystem |
| |
| Keywords: | quadratic generator cryptanalysis lattice attack truncated sequences |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载免费的PDF全文 |
|
