Abstract | ||
---|---|---|
The DECT Standard Cipher (DSC) is a proprietary stream cipher used for enciphering payload of DECT transmissions such as cordless telephone calls. The algorithm was kept secret, but a team of cryptologists reverse-engineered it and published a way to reduce the key space when enough known keystreams are available [4]. The attack consists of two phases: At first, the keystreams are analyzed to build up an underdetermined linear equation system. In the second phase, a bruteforce attack is performed where the equation system limits the number of potentially valid keys. In this paper, we present an improved variant of the first phase of the attack as well as an optimized FPGA implementation of the second phase, which can be used with our improved variant or with the original attack. Our improvement to the first phase of the attack is able to more than double the success probability of the attack, depending of the number of available keystreams. Our FPGA implementation of the second phase of the attack is currently the most cost-efficient way to execute the second phase of the attack. |
Year | DOI | Venue |
---|---|---|
2010 | 10.1007/978-3-642-24209-0_12 | ICISC |
Keywords | Field | DocType |
dect transmission,bruteforce attack,optimized fpga implementation,equation system,dect standard cipher,original attack,improved variant,available keystreams,improved attack,underdetermined linear equation system,fpga implementation | Key space,Brute-force attack,Cipher,Computer science,Cordless telephone,Fluhrer, Mantin and Shamir attack,Theoretical computer science,Stream cipher,Meet-in-the-middle attack,Stream cipher attack,Computer engineering,Embedded system | Conference |
Volume | ISSN | Citations |
6829 | 0302-9743 | 5 |
PageRank | References | Authors |
0.78 | 2 | 4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Michael Weiner | 1 | 10 | 1.58 |
Erik Tews | 2 | 281 | 20.11 |
Benedikt Heinz | 3 | 120 | 5.82 |
Johann Heyszl | 4 | 146 | 16.19 |