DES-X

DES-X

In cryptography, DES-X (or DESX) is a variant on the DES (Data Encryption Standard) block cipher intended to increase the complexity of a brute force attack using a technique called key whitening.

The original DES algorithm was specified in 1976 with a 56-bit key size: 256 possibilities for the key. There was criticism that an exhaustive search might be within the capabilities of large governments, particularly the United States' National Security Agency (NSA). One scheme to increase the key size of DES without substantially altering the algorithm was DES-X, proposed by Ron Rivest in May 1984.

The algorithm has been included in RSA Security's BSAFE cryptographic library since the late 1980s.

DES-X augments DES by XORing an extra 64 bits of key (K1) to the plaintext before applying DES, and then XORing another 64 bits of key (K2) after the encryption:

\mbox{DES-X}(M) = K_2 \oplus \mbox{DES}_K(M \oplus K_1)

The key size is thereby increased to 56 + 2 × 64 = 184 bits.

However, the effective key size (security) is only increased to 56+64-1-lb(M) = 119 - lb(M) = ~119 bits, where M is the number of chosen plaintext/ciphertext pairs the adversary can obtain, and lb denotes the binary logarithm. Moreover key size drops to 88 bits given 232.5 known plaintext and using advanced slide attack. (Because of this, some implementations actually make K2 a strong one way function of K1 and K.)

DES-X also increases the strength of DES against differential cryptanalysis and linear cryptanalysis, although the improvement is much smaller than in the case of brute force attacks. It is estimated that differential cryptanalysis would require 261 chosen plaintexts (vs. 247 for DES), while linear cryptanalysis would require 260 known plaintexts (vs. 243 for DES.) Note that with 264 plaintexts (known or chosen being the same in this case), DES (or indeed any other block cipher with a 64 bit block size) is totally broken via the elementary codebook attack.

See also

References

  • Joe Kilian and Phillip Rogaway, How to protect DES against exhaustive key search (PostScript), Advances in Cryptology - Crypto '96, Springer-Verlag (1996), pp. 252–267.
  • P. Rogaway, The security of DESX (PostScript), CryptoBytes 2(2) (Summer 1996).
  • A. Biryukov and D. Wagner, Advanced Slide Attacks, Eurocrypt 2000, Springer-Verlag (2000), pp.589-606.

External links


Wikimedia Foundation. 2010.

Игры ⚽ Нужен реферат?

Look at other dictionaries:

  • Des — steht für: Data Encryption Standard, ein symmetrischer Verschlüsselungsalgorithmus Detached Eddy Simulation, ein Verfahren zur numerischen Lösung dreidimensionaler Strömungsmodelle Diethylstilbestrol, ein Arzneistoff aus der Gruppe der… …   Deutsch Wikipedia

  • Des Vœux — could mean: Sir George William Des Vœux, a British colonial officer Dr. Henry Antoine Des Voeux, a scientist who first coined the term smog Des Voeux Road, road in Hong Kong named after the colonial officer Des Voeux Island is a member of the… …   Wikipedia

  • DES — steht für: Data Encryption Standard, ein symmetrischer Verschlüsselungsalgorithmus Delivered Ex Ship (dt.: Geliefert ab Schiff), eine internationale Handelsklausel nach den Incoterms Detached Eddy Simulation, ein Verfahren zur numerischen Lösung… …   Deutsch Wikipedia

  • DES — may refer to: Computing Data Encryption Standard DirectShow Editing Services, an Application Programming Interface Medical Diethylstilbestrol, a synthetic estrogen and the origin of the phrase DES daughter DES gene, which encodes the Desmin… …   Wikipedia

  • DÈS — préposition de temps et de lieu Depuis, à partir de. Dès cette époque là, ou Dès là (ce dernier a vieilli). Dès l enfance. Dès hier. Dès Orléans. Dès sa source.   Dès lors, Dès ce moment là, dès ce temps là. Je vis bien dès lors où il voulait en… …   Dictionnaire de l'Academie Francaise, 7eme edition (1835)

  • Dés — László Dés [ˈlaːsloː ˈdeːʃ] (* 9. Januar 1954 in Budapest) ist ein ungarischer Jazz Saxophonist und Komponist. Dés besuchte von 1960 bis 1968 die Musikschule Zoltán Kodály. Von 1963 bis 1971 absolvierte er eine Klavierausbildung. Danach studierte …   Deutsch Wikipedia

  • des- — prefix Etymology: French dés , from Old French des more at de de 6 especially before vowels < desoxy > …   New Collegiate Dictionary

  • Des — (ре бемоль) первая ступень (тоника) в диатонических гаммах Des dur, Des moll; вторая ступень ces dur и малоупотребительной ces moll; третья ступень в гамме b moll; четвертая ступень (суб доминанта) в гаммах as dur, as moll; пятая ступень… …   Энциклопедический словарь Ф.А. Брокгауза и И.А. Ефрона

  • Des Moines, Iowa — Des Moines redirects here. For other uses, see Des Moines (disambiguation). City of Des Moines   City   Clockwise from top: 801 Grand …   Wikipedia

  • Des Plaines, Illinois — Des Plaines redirects here. For the river, see Des Plaines River. Des Plaines, Illinois County: Cook Township: Maine Mayor: Martin J. Moylan ZIP code(s): 60016, 60017, 60018, 60019 Area code(s): 847 224 …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”