Content deleted Content added
+mergeto |
m Simplified the psuedocode by removing the excessive 'a' variable. |
||
| (45 intermediate revisions by 33 users not shown) | |||
Line 1:
{{Short description|Stream cipher}}
'''VMPC''' ('''Variably Modified Permutation Composition''') for [[cryptography]] is a [[stream cipher]] similar to the
well known and popular cipher [[RC4]] designed by [[Ron Rivest]]. It was designed by Bartosz Żółtak, presented in 2004 at the [[Fast Software Encryption]] conference. VMPC is a modification of the [[RC4]] cipher.<ref name=maximov>{{cite journal |title=Two Linear Distinguishing Attacks on VMPC and RC4A and Weakness of RC4 Family of Stream Ciphers (Corrected) |author=Alexander Maximov |journal=Cryptology ePrint Archive |date=2007-02-22 |url=https://eprint.iacr.org/2007/070 }} (originally presented at FSE 2006 conference)</ref>
The
'''for''' x '''from''' 0 '''to''' n-1:
▲The VMPC function is a transformation of n-element [[permutation]]s defined as:
In 2006 at Cambridge University, Kamil Kulesza investigated the problem of inverting VMPC and concluded "results indicate that VMPC is not a good candidate for a cryptographic one-way function".<ref name="Kulesza2006">{{cite web|last1=Kulesza|first1=Kamil|date= 2008-10-27|title=On Inverting the VMPC One-Way Function|url=http://www-old.newton.ac.uk/preprints/NI06009.pdf|access-date=9 February 2015}}</ref>
▲ for x from 0 do n-1: g(x) = VMPC(f(x)) = f(f(f(x))+1)
The VMPC
▲Interestingly inverting the function, i.e. obtaining f from g appears to be a complex problem. According to computer simulations the average number of operations required to recover f from g for a 16-element permutation is about 2<sup>11</sup>, for 64-element permutation - about 2<sup>53</sup> and for a 256-element permutation - about 2<sup>260</sup>.
<span style="color: green;">''All arithmetic is performed modulo 256.''</span>
i := 0
'''while''' GeneratingOutput:
'''output''' S[S[S[j]] + 1]
swap S[i] and S[j] <span style="color: green;">(''b := S[j]; S[j] := S[i]; S[i] := b)'')</span>
'''endwhile'''
Where 256-element permutation {{mono|P}} and integer value {{mono|s}} are obtained from the encryption password using the VMPC-KSA (Key Scheduling Algorithm)
==References==
▲The VMPC one-way function is used in an [[encryption]] algorithm - the VMPC Stream Cipher (see what a [[stream cipher]] is. The algorithm is very efficient in software implementations (encrypt L bytes of plaintext do):
{{reflist}}
▲ 1. n = 0
▲ P[n] = P[s]
▲ P[s] = Temp
▲Where 256-element permutation P and integer value s are obtained from the encryption password using the VMPC-KSA (Key Scheduling Algorithm), which can be found at the VMPC Homepage along with the VMPC-MAC (Message Authentication Code) allowing to authenticate messages encrypted with the VMPC Stream Cipher.
==External links==
* [http://www.vmpcfunction.com/ VMPC Homepage]
* [http://www.okna.wroc.pl/vmpc.pdf Original conference paper on VMPC from okna wrocław (PDF)]
* [http://talks.cam.ac.uk/talk/index/4950/ Kamil Kulesza: On inverting the VMPC one-way function]
* [http://cartman-cipher.narod.ru/mirror/vmpcksa3.zip Unofficial C implementation of VMPC Stream cipher]
* [http://cartman-cipher.narod.ru/mirror/vmpclib.dpr Unofficial Delphi implementation of VMPC Stream cipher]
* https://eprint.iacr.org/2013/768.pdf VMPC-R: Cryptographically Secure Pseudo-Random Number Generator Alternative to RC4
* https://eprint.iacr.org/2014/985.pdf Statistical weakness in Spritz against VMPC-R: in search for the RC4 replacement
* https://eprint.iacr.org/2014/315.pdf Statistical weaknesses in 20 RC4-like algorithms and (probably) the simplest algorithm free from these weaknesses - VMPC-R
* https://eprint.iacr.org/2019/041.pdf Message Authentication (MAC) Algorithm For The VMPC-R (RC4-like) Stream Cipher
[[Category:Stream ciphers]]
{{Crypto-stub}}
{{cryptography navbox | stream}}
| |||