Content deleted Content added
Added navbox |
m Simplified the psuedocode by removing the excessive 'a' variable. |
||
| (26 intermediate revisions by 19 users not shown) | |||
Line 1:
{{Short description|Stream cipher}}
'''VMPC''' ('''Variably Modified Permutation Composition''') for [[cryptography]] is a [[stream cipher]] similar to the
The core of the cipher is the VMPC function, a transformation of ''n''-element [[permutation]]s defined as:▼
▲'''VMPC''' ('''Variably Modified Permutation Composition''') is a [[stream cipher]] technology designed by Bartosz Zoltak, presented in 2004 at the [[Fast Software Encryption]] conference. VMPC is a modification of the [[RC4]] cipher.<ref name=maximov>{{cite paper |title=Two Linear Distinguishing Attacks on VMPC and RC4A and Weakness of RC4 Family of Stream Ciphers (Corrected) |author=Alexander Maximov |date=2007-02-22 |url=https://eprint.iacr.org/2007/070 }} (originally presented at FSE 2006 confernece)</ref>
'''for''' x '''from''' 0 '''to''' n-1:
▲The core of the cipher is the VMPC function, a transformation of n-element [[permutation]]s defined as:
The function was designed such that inverting it, i.e. obtaining {{mono|f}} from {{mono|g}}, would be a complex problem. According to computer simulations the average number of operations required to recover {{mono|f}} from {{mono|g}} for a 16-element permutation is about 2<sup>11</sup>
▲ for x from 0 do n-1: g(x) = VMPC(f)(x) = f(f(f(x))+1)
In 2006 at Cambridge University, Kamil Kulesza investigated the problem of inverting VMPC and concluded "results indicate that VMPC is not a good candidate for a cryptographic one-way function".<ref name="Kulesza2006">{{cite
▲The function was designed such that inverting it, i.e. obtaining f from g, would be a complex problem. According to computer simulations the average number of operations required to recover f from g for a 16-element permutation is about 2<sup>11</sup>, for 64-element permutation - about 2<sup>53</sup> and for a 256-element permutation - about 2<sup>260</sup>.{{Citation needed|date=September 2015}}
The VMPC function is used in an [[encryption]] algorithm
▲In 2006 at Cambridge University, Kamil Kulesza investigated the problem of inverting VMPC and concluded "results indicate that VMPC is not a good candidate for a cryptographic one-way function".<ref name="Kulesza2006">{{cite paper|last1=Kulesza|first1=Kamil|date= 2008-10-27|title=On Inverting the VMPC One-Way Function|url=http://www-old.newton.ac.uk/preprints/NI06009.pdf|accessdate=9 February 2015}}</ref>
<span style="color: green;">''All arithmetic is performed modulo 256.''</span>
▲The VMPC function is used in an [[encryption]] algorithm - the VMPC [[stream cipher]]. The algorithm allows for efficient in software implementations; to encrypt L bytes of plaintext do:
'''while''' GeneratingOutput:
j := S[j + S[i]]
'''output''' S[S[S[j]] + 1]
swap S[i] and S[j] <span style="color: green;">(''b := S[j]; S[j] := S[i]; S[i] := b)'')</span>
i := i + 1
'''endwhile'''
Where 256-element permutation {{mono|P}} and integer value {{mono|s}} are obtained from the encryption password using the VMPC-KSA (Key Scheduling Algorithm).▼
▲ 1. n = 0
▲Where 256-element permutation P and integer value s are obtained from the encryption password using the VMPC-KSA (Key Scheduling Algorithm).
==References==
Line 34 ⟶ 37:
* [http://cartman-cipher.narod.ru/mirror/vmpclib.dpr Unofficial Delphi implementation of VMPC Stream cipher]
* https://eprint.iacr.org/2013/768.pdf VMPC-R: Cryptographically Secure Pseudo-Random Number Generator Alternative to RC4
[[Category:Cryptography]]▼
* https://eprint.iacr.org/2014/985.pdf Statistical weakness in Spritz against VMPC-R: in search for the RC4 replacement
* https://eprint.iacr.org/2014/315.pdf Statistical weaknesses in 20 RC4-like algorithms and (probably) the simplest algorithm free from these weaknesses - VMPC-R
* https://eprint.iacr.org/2019/041.pdf Message Authentication (MAC) Algorithm For The VMPC-R (RC4-like) Stream Cipher
{{Crypto-stub}}
| |||