ciphers are usually classified into two types, synchronous stream ciphers and asynchronous stream ciphers, and ..... eriNzenner.name/docs/2004BstateBwosis.pdf.
Available online at www.sciencedirect.com
ScienceDirect Procedia Engineering 181 (2017) 620 – 625
��WK�,QWHUQDWLRQDO�&RQIHUHQFH�,QWHUGLVFLSOLQDULW\�LQ�(QJLQHHULQJ��,17(5�(1*������
8QLILHG�)RUPDO�0RGHO�IRU�6\QFKURQRXV�DQG�6HOI�6\QFKURQL]LQJ� 6WUHDP�&LSKHUV� %RJGDQ�&UDLQLFX � a
“Petru Maior” University of Tîrgu-Mureú, N. Iorga, No. 1, Tîrgu-Mureú, 540088, Romania
$EVWUDFW� 6WUHDP�FLSKHUV�HQFU\SW�LQGLYLGXDO�FKDUDFWHUV�RI�D�SODLQWH[W�PHVVDJH�RQH�DW�D�WLPH��XVLQJ�DQ�HQFU\SWLRQ�VFKHPH�ZKLFK�YDULHV�ZLWK� WLPH��6WUHDP�FLSKHUV�DUH�FRPPRQO\�FODVVLILHG�DV�V\QFKURQRXV�RU�VHOI�V\QFKURQL]LQJ��$V�D�JHQHUDO�UXOH��D�VWUHDP�FLSKHU�FRQVLVWV�RI� WZR�SDUWV��D�NH\�VFKHGXOH�DOJRULWKP�DQG�D�NH\VWUHDP�JHQHUDWRU��0RVW�UHVHDUFK�DQG�FU\SWDQDO\VHV�RI�VWUHDP�FLSKHUV�DUH�FDUULHG�RXW� VHSDUDWHO\�IRU�WKH�WZR�SDUWV��EXW�LW�LV�VWLOO�LPSRUWDQW��PDLQO\�IRU�VHFXULW\�UHDVRQV��WR�FRQVLGHU�LQWHJUDWLRQ�DVSHFWV�DQG�LPSOLFDWLRQV� EHWZHHQ� WKH� NH\� VFKHGXOH� DOJRULWKP� DQG� WKH� NH\VWUHDP� JHQHUDWRU�� 7KHUHIRUH�� WKH� SDSHU� SURSRVHV� DQ� XQLILHG� IRUPDO� PRGHO� IRU� V\QFKURQRXV� DQG� VHOI�V\QFKURQL]LQJ� VWUHDP� FLSKHU� DOJRULWKPV� IURP� ZKLFK� DUH� GHULYHG� IRUPDO� PRGHOV� IRU� ERWK� W\SHV� RI� VWUHDP� FLSKHUV��
�
© 2017 The Authors. Published by Elsevier Ltd. This is an open access article under the CC BY-NC-ND license ������7KH�$XWKRUV��3XEOLVKHG�E\�(OVHYLHU�/WG�� (http://creativecommons.org/licenses/by-nc-nd/4.0/). 3HHU�UHYLHZ�XQGHU�UHVSRQVLELOLW\�RI�WKH�RUJDQL]LQJ�FRPPLWWHH�RI�,17(5�(1*������� Peer-review under responsibility of the organizing committee of INTER-ENG 2016 Keywords:�V\QFKURQRXV�VWUHDP�FLSKHU��VHOI�V\QFKURQL]LQJ�VWUHDP�FLSKHU��NH\�VFKHGXOLQJ�DOJRULWKP��NH\VWUHP�JHQHUDWRU��LQQHU�VWDWH��IRUPDO� PRGHO��
���,QWURGXFWLRQ� $�VWUHDP�FLSKHU�LV�D�V\PPHWULF�F\SKHU�DQG�LW�DGGV�WKH�NH\VWUHDP�WR�WKH�SODLQWH[W�JHQHUDWLQJ�WKH�FLSKHUWH[W��6WUHDP� FLSKHUV� DUH� XVXDOO\� FODVVLILHG� LQWR� WZR� W\SHV�� V\QFKURQRXV� VWUHDP� FLSKHUV� DQG� DV\QFKURQRXV� VWUHDP� FLSKHUV�� DQG� HQFRPSDVV� WZR� GLVWLQFWLYH� DUFKLWHFWXUDO� EXLOGLQJ� EORFNV�� D� NH\� VFKHGXOH� DOJRULWKP� DQG� D� NH\VWUHDP� JHQHUDWRU�� *HQHUDOO\�� WKH� UHVHDUFK� RQ� VWUHDP� FLSKHUV� LQYROYHV� QRWDEO\� LQGLYLGXDO� FU\SWDQDO\VHV� RI� WKH� WZR� FRPSRQHQWV�� ZLWK� �
�
�&RUUHVSRQGLQJ�DXWKRU��7HO�������������������ID[������������������ E-mail address:�FERJGDQ#XSP�UR�
1877-7058 © 2017 The Authors. Published by Elsevier Ltd. This is an open access article under the CC BY-NC-ND license
(http://creativecommons.org/licenses/by-nc-nd/4.0/). Peer-review under responsibility of the organizing committee of INTER-ENG 2016
doi:10.1016/j.proeng.2017.02.442
Bogdan Crainicu / Procedia Engineering 181 (2017) 620 – 625
SDUWLFXODU�HPSKDVLV�RQ�WKH�ODWWHU��7KLV�VWULFW�VHSDUDWLRQ�RI�WKH�NH\�VFKHGXOH�DOJRULWKP�DQG�WKH�NH\VWUHDP�JHQHUDWRU�LV� GHVLUDEOH�IRU�DUFKLWHFWLQJ�WKHP��QHYHUWKHOHVV��VHFXULW\�FRQFHUQV�UHTXLUH�WR�WDNH�PRUH�RIWHQ�LQWR�DFFRXQW�WKH�EHKDYLRXU� DQG� WKH� LQWHU�GHSHQGHQF\�RI�HYHU\� FRPSRQHQW�RQ� HDFK�RWKHU� E\� XQGHUVWDQGLQJ� WKH� HQWLUH� VHW�RI� LQWHUDFWLRQ� HIIHFWV�� 2QH� RI� WKH� PRVW� IUHTXHQW� DSSURDFK� WKDW� VWLOO� FRYHUV� WKH� LQWHUDFWLRQ� EHWZHHQ� WKH� NH\� VFKHGXOH� DOJRULWKP� DQG� WKH� NH\VWUHDP� JHQHUDWRU� LV� WKDW� LW� H[DPLQHV� WKH� LQIOXHQFH� DQG� WKH� LPSDFW� RI� GLIIHUHQW� VHFUHW� LQQHU� VWDWHV� RQ� NH\VWUHDP� JHQHUDWRU��DQG�LPSOLFLWO\�RQ�WKH�RYHUDOO�VHFXULW\�RI�WKH�VWUHDP�FLSKHU��IURP�WKLV�SRLQW�RI�YLHZ��7LPH�0HPRU\�'DWD� WUDGHRIIV�DUH�DQ�LPSRUWDQW�FU\SWDQDO\VLV�VXEMHFW�>�@��>�@��>�@��>�@��>��@ ��� 6WDUWLQJ� IURP� WKH� YLHZV� H[SUHVVHG� LQ� >�@�� WKH� SDSHU� SUHVHQWV� D� JHQHUDO� XQLILHG� �LQWHJUDWHG � IRUPDO� PRGHO� IRU� V\QFKURQRXV� DQG� VHOI�V\QFKURQL]LQJ� VWUHDP� FLSKHUV�� ZKHUH� DOO� HQWLWLHV� LQYROYHG� �VWDWHV�� NH\V�� IXQFWLRQV�� FOHDUWH[W�� FLSKHUWH[W �DQG�FRUUHVSRQGLQJ�IORZV�DUH�GHSLFWHG��:KLOH�PDNLQJ�D�FOHDUHU�GHPDUFDWLRQ�EHWZHHQ�WKH�NH\�VFKHGXOLQJ� DOJRULWKP�DQG�WKH�NH\VWUHDP�JHQHUDWLRQ��WKLV�IRUPDO�PRGHO�PXVW�EH�VHHQ�DV�D�KLJK�OHYHO�IXQFWLRQDO�GHVLJQ�RI�VWUHDP� FLSKHUV�� ZKHUH� WUDQ]LWLRQV� DQG� GDWD� DQG� FRPSRQHQWV� LQWHJUDWLRQ� IORZV� FDQ� EH� HDVLO\� LGHQWLILHG�� )XUWKHU�� IURP� WKLV� XQLILHG�IRUPDO�PRGHO��IRU�HDFK�W\SH�RI�VWUHDQ�FLSKHU��V\QFKURQRXV�DQG�VHOI�V\QFKURQL]LQJ��D�VSHFLILF�DOJRULWKPLF�OLNH� IRUPDO�PRGHO�LV�ODLG�RXW�� 7KH�UHVW�RI�WKH�SDSHU�LV�RUJDQL]HG�LQ�WKH�IROORZLQJ�ZD\��,Q�6HFWLRQ���ZH�SUHVHQW�D�EDVLF�DQG�DQ�H[WHQGHG�NH\VWUHP� JHQHUDWRUV� VXLWDEOH� IRU� V\QFKURQRXV� VWUHDP� FLSKHUV�� ,Q� 6HFWLRQ� �� ZH� SURSRVH� DQ� XQLILHG� IRUPDO� PRGHO� IRU� V\QFKURQRXV� DQG� VHOI�V\QFKURQL]LQJ� VWUHDP� FLSKHU� DOJRULWKPV� WKDW� LQFOXGHV� D� IRUPDOL]DWLRQ� RI� WKH� NH\� VFKHGXOLQJ� DOJRULWKP� DQG� RI� WKH� NH\VWUHDP� JHQHUDWRU� DV� ZHOO�� PRGHO� IURP� ZKLFK� DUH� GHULYHG� IRUPDO� PRGHOV� IRU� ERWK� W\SHV�� V\QFKURQRXV�DQG�VHOI�V\QFKURQL]LQJ��RI�VWUHDP�FLSKHUV��:H�FRQFOXGH�LQ�6HFWLRQ���� ���%DVLF�PRGHO�IRU�NH\VWUHDP�JHQHUDWRU� 7KH�GHILQLWLRQ�RI�WKH�FRPSRQHQWV�RI�D�EDVLF�PRGHO�RI�NH\VWUHDP�JHQHUDWRU�IRU�V\QFKURQRXV�VWUHDP�FLSKHUV��WKH� HQFU\SWLRQ�NH\�LV�JHQHUDWHG�LQGHSHQGHQWO\�RI�WKH�FOHDUWH[W�DQG�WKH�FLSKHUWH[W �DUH�SUHVHQWHG�LQ�>�@�DQG�>��@�� � 'HILQLWLRQ���>�@��>��@��A keystream generator Gbase�S, F, f consists of the following components�� �L �S��space of inner states��S �^����`N t ��where Nt represents the size��in bits �of the inner state S�� �LL �F��update function��next-state function ��that modifies the inner state S based on the initial secret key�k�� F���S o S��si+1� �F�k��si ��si Si� si+1 Si+1��Si S��Si+1 S�� �LLL �f��output function, that produces the final encryption key��keystream �based on the secret inner state�S����� f ��^����` a1 o �^����` a 2 ���a2 d a1 d Nt��zi� �f�si ��zi �^����` a 2 ��Function f may depend on the initial secret key�k��� zi� �f�k��si ��zi �^����` a 2 ��k �^����`l�� � 7KH� PHFKDQLVP� IRU� LQWHJUDWLQJ� WKH� NH\VWUHDP� JHQHUDWRU� Gbase�S�� F�� f � LQWR� WKH� VWUXFWXUH� RI� VWUHDP� FLSKHU� DOJRULWKPV�LV�GHVFULEHG�DV�IROORZV�>��@�� �D �secret key�k �^����`l�� �E �initialization function�F0���^����`l u ^���O` l sup o S�that provides the initial inner state S0 from the key k and lsup bit of additional information�� �F �;25 function� ��^����` a 2 u �^����` a 2 o �^����` a 2 that produces the ciphertext��in words of�a2�bits �by adding the keystream bitwise modulo���to the plaintext�� � �7KH�DXWKRUV�DQDO\]H�LQ�>��@�WKH�VL]H�RI�WKH�LQQHU�VWDWHV�DQG�DVVHUW�WKH�IDFW�WKDW�WKLV�VL]H�VKRXOG�RQO\�GHSHQG�RQ�WKH� NH\VWUHDP� JHQHUDWRU�� ZKDW� VKRXOG� EH� NQRZQ� LQ� WKLV� FDVH� LV� D� VHW� RI� FRQGLWLRQV� WR� EH� PHW� E\� WKH� RXWSXW� RI� DQ\� LQLWLDOL]DWLRQ�IXQFWLRQ�LQ�RUGHU�WR�HQVXUH�SURSHU�IXQFWLRQLQJ�RI�WKH�NH\VWUHDP�JHQHUDWRU��%DVHG�XSRQ�WKHVH�GHGXFWLRQV�� WKH�SDSHU�>��@�VWDWHV�WKDW�LQ�RUGHU�WR�REWDLQ�D�XQLTXH�GHILQLWLRQ�IRU�WKH�VL]H�RI�WKH�LQQHU�VWDWH��WKH�VHW�RI�YDOLG�LQLWLDO� VWDWHV� PXVW� EH� GHILQHG� �DFFRUGLQJ� WR� >��@�� QRW� DOO� LQQHU� VWDWHV� FDQ� FDQGLGDWH� IRU� D� VWDUWLQJ� VWDWH �� 7KHUHIRUH�� DQ� H[WHQGHG�PRGHO�RI�Gbase�S��F��f �LV�DGYDQFHG�E\�LQWURGXFLQJ�DQ�DGGLWLRQDO�FRPSRQHQW�� � 'HILQLWLRQ�� >��@��A keystream generator Gextended�S, F, f, C consists of the following components�� �L �S��space of inner states��S �^����`N t ��� �LL �F��update function��next-state function �that modifies the inner state S based on the initial secret key�k���
621
622
Bogdan Crainicu / Procedia Engineering 181 (2017) 620 – 625
F���S o S��si+1� �F�k��si ��si Si� si+1 Si+1��Si S��Si+1 S�� �LLL �f��output function, that produces the final encryption key��keystream ��based on the secret inner state�S��� f ��^����` a1 o �^����` a 2 ���a2 d a1 d Nt��zi� �f�si ��zi �^����` a 2 ��Function f may depend on the initial secret key�k��� zi� �f�k��si ��zi �^����` a 2 ��k �^����`l�� �LY �C��boolean predicate�C���S o �^����`��such that an inner state S is a valid starting state iff C�S � ����� � 7KH� DXWKRUV� UHFUHDWH� WKH� FRQGLWLRQ� �E � IURP� WKH� LQWHJUDWLRQ� RI� WKH� NH\VWUHP� JHQHUDWRU� Gbase�S�� F�� f � LQWR� WKH� VWUXFWXUH�RI�VWUHDP�FLSKHU�DOJRULWKPV�>��@�� �E¶ �an initialization function�F0���^����`l u ^���O` l sup o S�that provides a starting state S0 from the key k and and lsup bit of additional information, such that�C�S0 � ���� � )XUWKHU��D�GHILQLWLRQ�IRU�WKH�LQQHU�VWDWH�VL]H�RI�WKH�JHQHUDWRU�G�LV�SURYLGHG�� � 'HILQLWLRQ� �� >��@� Let G be a keystream generator, and let A be a minimal autonomous finite state machine ^
implementing G. Then the inner state size of the generator G is defined as
n = ªORJ � � A º , where A is the number
of inner states of A. ���)RUPDO�PRGHOV�IRU�VWUHDP�FLSKHU�DOJRULWKPV� 7KH�DXWKRUV�PDNHV�LQ�>��@�D�VWULFW�VHSDUDWLRQ�RI�WKH�NH\�VFKHGXOLQJ�DOJRULWKP�IURP�WKH�NH\VWUHDP�JHQHUDWRU��EXW�LQ� D�ÄXQLQWHJUDWHG´�PRGH�±�FRPSRQHQW�LQWHJUDWLRQ�LVVXHV�DUH�LJQRUHG��$FFRUGLQJ�WR�>�@��ZKLOH�WKH�VHSDUDWLRQ�RI�WKH�WZR� FRPSRQHQWV� LV� D� XVHIXO� DSSURDFK� IRU� WKHLU�� E\� QRW� LQFOXGLQJ� WKH� FRPSRQHQW� LQWHJUDWLRQ� PHWKRGV� DQG� WKH� FRUUHVSRQGLQJ�IORZV�EHWZHHQ�WKHP�PD\�OHDG�LQ�WKH�RPLVVLRQ�RI�FHUWDLQ�VHFXULW\�DVSHFWV�FRQFHUQLQJ�LQWHUFRQQHFWLYLW\� DQG� V\QFKURQL]DWLRQ� RI� WKH� FLSKHU¶V� FRPSRQHQWV� DV� D� ZKROH� �WKH� GDQJHU� RI� SURSDJDWLRQ� RU� HYHQ� PXOWLSOLFDWLRQ� RI� VRPH�YXOQHUDELOLWLHV�WUDQVPLWWHG�EHWZHHQ�WKH�FLSKHU¶V�FRPSRQHQWV ��)RU�WKLV�UHDVRQ��WKHUH�LV�D�SURSRVDO�IRU�DQ�XQLILHG� IRUPDO�PRGHO�IRU�V\QFKURQRXV�DQG�VHOI�V\QFKURQL]LQJ�VWUHDP�FLSKHU�DOJRULWKPV��� 7KH�VWUHDP�FLSKHU�DOJRULWKPV�FRQWDLQ�WKUHH�PDLQ�FRPSRQHQWV�SODFHG�LQ�D�ZHOO�GHILQHG�RUGHU�DQG�LQWHUGHSHQGHQW�RI� HDFK� RWKHU� >�@�� WKH� FRPSRQHQW� WKDW� LQLWLDOL]HV� DQG� PRGLILHV�� EDVHG� RQ� DQ� LQLWLDO� VHFUHW� NH\� k� RU� D� VHFUHW� VHHG� ks �FRQFDWHQDWLRQ� RI� WKH� LQLWLDO� VHFUHW� NH\� DQG� DQ� DGGLWLRQDO� YDOXH �� DQ� LQQHU� VWDWH� YHFWRU� S� �component_� �� WKH� QH[W� FRPSRQHQW� WKDW� SURGXFHV� WKH� HQFU\SWLRQ� VHFUHW� ZRUGV� IRU� WKH� FOHDUWH[W�� QDPHO\� WKH� NH\VWUHDP� JHQHUDWRU� �component_� ��DQG�WKH�ODVW�FRPSRQHQW�WKDW�UHSUHVHQWV�WKH�SURFHVV�RI�HQFU\SWLRQ�LWVHOI��component_� ��%DVHG�RQ�WKH� VHTXHQFHV� RI� RSHUDWLRQV� LQFOXGHG� LQ� WKH� WKUHH� FRPSRQHQWV� �component_��� component_�� DQG� component_� �� ZH� SUHVHQW�LQ�)LJ����DQ�XQLILHG�IRUPDO�PRGHO�IRU�WKH�V\QFKURQRXV�DQG�VHOI�V\QFKURQL]LQJ�VWUHDP�FLSKHU�DOJRULWKPV��� 7KH�DOJRULWKPLF�DSSURDFK�RI�WKH�SURSRVHG�IRUPDO�PRGHOV�IRU�ERWK�W\SHV�RI�VWUHDP�FLSKHUV��FRQVHTXHQWLDO�IURP�WKH� )LJ��� �DUH�GHWDLOHG�VHSDUDWHO\�DV�IROORZV�� � )RUPDO�PRGHO�IRU�V\QFKURQRXV�VWUHDP�FLSKHU�DOJRULWKP�EDVHG�RQ�WKH�NH\VWUHDP�JHQHUDWRU�G�S�, S, k, F�, F, f, Z �� �L ��RSWLRQDO �FRQFDWHQDWLRQ�RI�WKH�LQLWLDO�VHFUHW�NH\�k �^����`l��DQG�DQ�DGGLWLRQDO�SXEOLF�YDOXH�sup ^���O` l sup ��H�J�� LQLWLDOL]DWLRQ�YHFWRU��QRQFH �DQG�REWDLQLQJ�D�VHFUHW�VHHG�ks �^����`L��L� �l ��lsup��component_� �� �LL � GHILQLQJ� WKH� LQQHU� VWDWH� YHFWRU� S �^��� �`N t �DQG� VHWWLQJ� WKH� LQLWLDO� VWDWH� S0 S� RI� WKH� LQQHU� VWDWH� YHFWRU� �component_� ��� 6HFRQG�SRLQW� x� EDVHG�RQ�WKH�YDOXHV�k�RU�ks��F0���^����`l o S��si� �F0�k �RU�F0���^����`L o S��si� �F0�ks ��si S0��� x� ZLWKRXW�XVLQJ�WKH�YDOXHV�k�RU�ks��F0���S o S��si �F0��i ��IRU�H[DPSOH��FKRRVLQJ�WKH�LGHQWLFDO�SHUPXWDWLRQ�IRU�WKH� VWDWH�YHFWRU�S ��
623
Bogdan Crainicu / Procedia Engineering 181 (2017) 620 – 625
�LLL �PRGLI\LQJ�WKH�LQQHU�VWDWH�S�EDVHG�RQ�WKH�LQLWLDO�VHFUHW�NH\�k�RU�WKH�VHFUHW�VHHG�ks��D�SURFHVV�WKDW�OHDGV�WR�REWDLQLQJ� D�VHFUHW�LQQHU�VWDWH��F���^����`l u S o S��si+1� �F�k��si �RU�F���^����`L u S o S� si+1� �F�ks��si ��si Si� si+1 Si+1��Si S�� Si+1 S �component_� ��� �LY �REWDLQLQJ�WKH�VSDFH�Z �^����` a 2 �RI�WKH�ILQDO�HQFU\SWLRQ�NH\V��keystream ��Z� ��z0��z1�������zi����� ��component_� ��� x� EDVHG�RQ�WKH�YDOXHV�k�RU�ks��f ��^����`l u S o �^����` a 2 ���zi� �f�k��si �RU�f ��^����`L u S o �^����` a 2 ��zi� �f�ks��si ����zi �^����` a 2 ��a2 d Nt�� x� ZLWKRXW�XVLQJ�WKH�YDOXHV�k�RU�ks��f ��S o �^����` a 2 ���a2 d Nt��zi� �f�si ��zi �^����` a 2 ����� �Y � WKH� HIIHFWLYH� HQFU\SWLRQ� SURFHVV� RI� WKH� FOHDUWH[W� M �^��� �` a 2 �� M� � �m0�� m1�� ����� mi�� ��� �� crypt� �� M u Z o C�� ZKHUH�C �^����` a 2 LV�WKH�VSDFH�RI�HQFU\SWHG�ZRUGV��C� ��z0��z1�������zi����� ��crypt��mi��zi � �mi zi �ci��mi �^����` a 2 �� zi �^����` a 2 �� ci �^��� �` a 2 �� ZKHUH�mi�UHSUHVHQWV� WKH�FOHDUWH[W� PHVVDJH� M¶V� ZRUGV�� HQFU\SWHG� LQFUHPHQWDOO\� ZLWK� WKH� HQFU\SWLRQ� NH\V� zi� �keystream � E\� XVLQJ� XOR� RSHUDWLRQV� �RWKHU� RSHUDWLRQ� W\SHV� DUH� SRVVLEOH� WRR � UHVXOWLQJ� WKH� HQFU\SWHG�ZRUGV�ci �component_� �� �
� )LJ�����8QLILHG�IRUPDO�PRGHO�IRU�V\QFKURQRXV�DQG�VHOI�V\QFKURQL]LQJ�VWUHDP�FLSKHUV�
)RUPDO�PRGHO�IRU�VHOI�V\QFKURQL]LQJ� VWUHDP�FLSKHU�DOJRULWKP�EDVHG�RQ�WKH�NH\VWUHDP�JHQHUDWRU�G�S�, S, k, f, Z, C �� �L � �RSWLRQDO � FRQFDWHQDWLRQ� RI� WKH� LQLWLDO� VHFUHW� NH\� k �^��� �`l� � DQG� DQ� DGGLWLRQDO� SXEOLF� YDOXH� sup ^��� O` l sup ����� �H�J��LQLWLDOL]DWLRQ�YHFWRU��QRQFH �DQG�REWDLQLQJ�D�VHFUHW�VHHG�ks �^����`L��L� �l ��lsup��component_� �� �LL �GHILQLQJ�WKH�LQQHU�VWDWH�YHFWRU�S �^����`t�DQG�VHWWLQJ�WKH�LQLWLDO�VWDWH�S0 S�RI�WKH�LQQHU�VWDWH�YHFWRU��Si� ��zi-t���� zi-t���������zi-� �DQG�S�� ��z-t��z-t���������z-� ��component_� ��
624
Bogdan Crainicu / Procedia Engineering 181 (2017) 620 – 625
��LLL �REWDLQLQJ�WKH�VSDFH�Z �^����` a 2 ��a2�!�t��RI�WKH�ILQDO�HQFU\SWLRQ�NH\V��keystream ��Z� ��z0��z1�������zi����� ��f ��^��� �`l�� u �S� o �^����` a 2 ���zi� �f�k��Si �RU�f ��^����`L�� u �S� o �^����` a 2 ��zi� �f�ks��Si ��zi� �^����` a 2 �component_� �� ��LY �WKH�HIIHFWLYH�HQFU\SWLRQ�SURFHVV�RI�WKH�FOHDUWH[W�0 �^����` a 2 ��0� ��P���P��������PL����� ��FU\SW���0 u = o &�� ZKHUH�& �^����` a 2 LV�WKH�VSDFH�RI�HQFU\SWHG�ZRUGV��&� ��]���]��������]L����� ��FU\SW��PL��]L � �PL ]L �FL������������������PL �^��� �` a 2 �� ]L �^��� �` a 2 �� FL �^��� �` a 2 �� ZKHUH� PL� UHSUHVHQWV� WKH� FOHDUWH[W� PHVVDJH� 0¶V� ZRUGV�� HQFU\SWHG� LQFUHPHQWDOO\�ZLWK�WKH�HQFU\SWLRQ�NH\V�]L��NH\VWUHDP �E\�XVLQJ�;25�RSHUDWLRQV��RWKHU�RSHUDWLRQ�W\SHV�DUH�SRVVLEOH� WRR �UHVXOWLQJ�WKH�HQFU\SWHG�ZRUGV�FL��FRPSRQHQWB� �� � ,Q�WKLV�ILHOG�RI�VWXG\��LQ�VRPH�FDVHV�>�@��>�@��>�@��WKH�FRQFHSW�RI�NH\VWUHDP�JHQHUDWRU�LV�DVVLPLODWHG�ZLWK�WKH�QRWLRQ� RI� HQFU\SWLRQ� DOJRU\WKP� �DOO� SUHYLRXV� RSHUDWLRQV� �L � ±� �Y � DQG� �L � ±� �LY �� LQFOXGLQJ� WKH� LQLWLDOL]DWLRQ� DQG� VHWWLQJ� SURFHVVHV�RI�WKH�LQQHU�VWDWH�YHFWRU�S ��$OVR��ZH�KDYH�WR�HPSKDVL]H�WKDW�WKH�LQLWLDOL]DWLRQ�SURFHVV�FDQ�EH�DVVRFLDWHG� ZLWK� WKH� LQLWLDO� VHWWLQJ� RI� WKH� VWDWH� YHFWRU� S�� QDPHO\� VWDUWLQJ� VWDWH� S�� �Starting Initialization� IURP� WKH� )LJ�� ��� RSHUDWLRQV� �L � DQG� �LL � IURP� WKH� ERWK� IRUPDO� PRGHOV�� EXW� LQ� WKH� FDVH� RI� WKH� V\QFKURQRXV� VWUHDP� FLSKHU� DOJRULWKP�� ZLWKRXW�XVLQJ�WKH�YDOXHV�k�RU�ks ��RQ�WKH�RWKHU�KDQG��WKH�LQLWLDOL]DWLRQ�SURFHVV�FDQ�EH�YLHZHG�IURP�WKH�SHUVSHFWLYH�RI� VHWWLQJ� WKH� VWDUWLQJ� VWDWH�� LPPHGLDWHO\� SULRU� WR� WKH� SURFHVV� RI� ILQDO� HQFU\SWLRQ� ZRUGV¶� JHQHUDWLRQ� �Keystream Initialization�IURP�WKH�)LJ�����RSHUDWLRQV��L ���LL �DQG��LLL �IURP�WKH�IRUPDO�PRGHO�IRU�WKH�V\QFKURQRXV�VWUHDP�FLSKHU� DOJRULWKP �� ,Q�WKH�FDVH�RI�WKH�JHQHUDWRUV�Gbase�S��F��f �DQG�Gextended�S��F��f, C �GHVFULEHG�LQ�>��@��WKH�LQLWLDOL]DWLRQ�IXQFWLRQ�F0� PXVW�EH�DVVRFLDWHG�WR�WKH�VHTXHQFH�Keystream Initialization��DOVR��WKH�LPSOHPHQWDWLRQ�RI�WKH�WZR�JHQHUDWRUV��Gbase�S�� F��f �DQG�Gextended�S��F��f, C ��DUH�FRYHUHG�E\�WKH�RSHUDWLRQV�WKDW�DUH�GHILQHG�LQ�RXU�IRUPDO�PRGHOV�IRU�VWUHDP�FLSKHU� �YDOLGDWLRQ�RI�WKH�VWDUWLQJ�VWDWH�DFFRUGLQJ�WR�FRQGLWLRQ��LY �IURP�'HILQLWLRQ���RI�WKH�NH\VWUHDP�JHQHUDWRU Gextended�S, F, f, C FDQ�EH�LQWHJUDWHG�LQWR�WKH�IRUPDO�PRGHOV�DW�VWHS��LL �� ���&RQFOXVLRQV� )RU�WKH�VWUHDP�FLSKHU�DOJRULWKPV��WKH��SVHXGR UDQGRP�QXPEHU�VHTXHQFH�JHQHUDWRUV�DUH�FULWLFDO�HOHPHQWV��EHFDXVH� WKH\�SURGXFH�WKH�FULWLFDO�VHTXHQFH��keystream �IRU�WKH�HQFU\SWLRQ�SURFHVV��7KH�SDSHU�WUHDWV�WKH�IRUPDO�PRGHO�IRU�WKH� NH\VWUHDP� FRQFHSW� DQG� WKH� LQWHJUDWLRQ� RI� WKLV� PRGHO� LQWR� WKH� VWUHDP� FLSKHU� DOJRULWKPV�� $V� D� FRQVHTXHQFH�� ZH� SURSRVH�D�XQLILHG��LQWHJUDWHG �IRUPDO� PRGHO�IRU�WKH�V\QFKURQRXV�DQG�VHOI�V\QFKURQL]LQJ�VWUHDP�FLSKHU� DOJRULWKPV� FRQVLVWLQJ� RI� WKUHH� FRPSRQHQWV�� WKH� FRPSRQHQW� WKDW� LQLWLDOL]HV�DQG� PRGLILHV�� EDVHG� RQ� DQ� LQLWLDO� VHFUHW� NH\�k� RU� D� VHFUHW� VHHG� ks�� DQ� LQQHU� VWDWH� S�� WKH� FRPSRQHQW� WKDW� UHSUHVHQWV� WKH� NH\VWUHDP� JHQHUDWRU� DQG� WKH� FRPSRQHQW� WKDW� LPSOHPHQWV�WKH�HQFU\SWLRQ�SURFHVV�LWVHOI��7KHQ��WKH�SDSHU�SUHVHQWV�D�IRUPDO�DOJRULWKPLF�PRGHO�IRU�HDFK�RI�WKH�ERWK� VWUHDP�FLSKHU�YDULDQWV�EDVHG�RQ�WKH�VSHFLILF�NH\VWUHDP�JHQHUDWRU��� 7KH� QRYHOW\� EURXJKW� E\� RXU� IRUPDO� PRGHOV� FRQVLVWV�� ILUVW� RI� DOO�� LQ� WKH� IDFW� WKDW� WKH\� PDNH� D� PRUH� FOHDUHU� VHSDUDWLRQ� EHWZHHQ� WKH� NH\� VFKHGXOLQJ� SDUW� DQG� WKH� NH\VWUHDP� JHQHUDWLRQ� SDUW�� WKXV� SURYLGLQJ� D� KLJKHU� GHJUHH� RI� PRGXODULW\�� DQG�� PRUHRYHU�� WKH\� FDQ� LQWHJUDWH� DQG� XQLI\� DOO� SRVVLEOH� LQWHUQDO� WUDQ]LWLRQV� DQG� IORZV� �GDWD� DQG� FRPSRQHQWV�LQWHJUDWLRQ�IORZV �DQG�PRGHV�RI�RSHUDWLRQ�IRU�D�VWUHDP�FLSKHU�DOJRULWKP��LQFOXGLQJ�WKH�RSWLRQDO�RQHV�� IRU�H[DPSOH��WKH�FKRLFH�RI�XVLQJ�WKH�LQLWLDOL]DWLRQ�YHFWRUV��RU�LQWURGXFLQJ�D�QHZ�OHYHO�RI�SULPDU\�LQLWLDOL]DWLRQ�RI�WKH� VWDWH� YHFWRU�� RU� WKH� UHJXODU� PRGLILFDWLRQ� RI� WKH� ILQDO� VWDWH� YHFWRU� WKDW� HQWDLOV� WKH� LQLWLDOL]DWLRQ� RI� WKH� NH\VWUHDP� JHQHUDWRU�� 7KH� UHVXOWV� RI� RXU� UHVHDUFK� FDQ� EH� XVHG� LQ� D� PRGXODU� EXW� LQWHJUDWHG� GHVLJQ� DSSURDFK� IRU� IXWXUH� VWUHDP� FLSKHU�DOJRULWKPV�� $V�D�ILQDO�UHPDUN��WKH�SURSRVHG�IRUPDO�PRGHOV�GR�QRW�DIIHFW�LQ�DQ\�ZD\�WKH�HYDOXDWLRQ�PHWKRG�H[SRVHG�LQ�>��@� UHJDUGLQJ�WKH�VWUHQJWK�RI�WKH�NH\VWUHDP�JHQHUDWRU�UHODWLYH�WR�LWV�LQQHU�VWDWH�VL]H��� 5HIHUHQFHV� >�@� 6��%DEEDJH��$�6SDFH�7LPH�7UDGH�2II�LQ�([KDXVWLYH�6HDUFK�$WWDFNV�RQ�6WUHDP�&LSKHUV��(XURSHDQ�&RQFHQWLRQ�RQ�6HFXULW\�DQG�'HWHFWLRQ�� ,((�&RQIHUHQFH�3XEOLFDWLRQ��YRO������������� >�@� $��%LU\XNRY��$��6KDPLU��&U\SWDQDO\WLF�WLPH�PHPRU\�GDWD�WUDGHRIIV�IRU�VWUHDP�FLSKHUV��$VLDFU\SW�������/1&6��9RO��������6SULQJHU�������� SS��������
Bogdan Crainicu / Procedia Engineering 181 (2017) 620 – 625 >�@� (��%DUNDQ��6��6KDPLU��5LJRURXV�%RXQGV�RQ�&U\SWDQDO\WLF�7LPH�0HPRU\�7UDGHRIIV��$GYDQFHV�LQ�&U\SWRORJ\���&5�@� %��&UDLQLFX��6HFXULW\�LQ�1HWZRUNV�DQG�LQ�:LUHOHVV�7HFKQRORJLHV��3K'�7KHVLV��%DEH�܈%RO\DL�8QLYHUVLW\��)DFXOW\�RI�0DWKHPDWLFV�DQG� &RPSXWHU�6FLHQFH��&OXM�1DSRFD�������� >�@� 6��)OXKUHU��'��0F*UHZ��6WDWLVWLFDO�DQDO\VLV�RI�WKH�DOOHJHG�5&��NH\VWUHDP�*HQHUDWRU��LQ��3URF���WK�,QWHUQDWLRQDO�:RUNVKRS��)6(�������1HZ� �@� -��'M��*ROLF��/LQHDU�VWDWLVWLFDO�ZHDNQHVV�RI�DOOHJHG�5&��NH\VWUHDP�JHQHUDWRU���LQ��3URF��,QWHUQDWLRQDO�&RQIHUHQFH�RQ�WKH�7KHRU\�DQG� $SSOLFDWLRQ�RI�&U\SWRJUDSKLF�7HFKQLTXHV��(852&5�@� ��@�(��=HQQHU��2Q�WKH�5ROH�RI�WKH�,QQHU�6WDWH�6L]H�LQ�6WUHDP�&LSKHUV��5HLKH�,QIRUPDWLN����������� KWWS���ZZZ�HULN]HQQHU�QDPH�GRFV�����BVWDWHBZRVLV�SGI��
625
