The full cost of cryptanalytic attacks

The full cost of cryptanalytic attacks

Cached

Download Links

[cr.yp.to]
[cr.yp.to]

Other Repositories/Bibliography

DBLP

by Michael J. Wiener

Venue:	Journal of Cryptology
Citations:	14 - 0 self

BibTeX

@ARTICLE{Wiener_thefull,
    author = {Michael J. Wiener},
    title = {The full cost of cryptanalytic attacks},
    journal = {Journal of Cryptology},
    year = {},
    volume = {17},
    pages = {2004}
}

Bookmark

OpenURL

Abstract

Abstract. An open question about the asymptotic cost of connecting many processors to a large memory using three dimensions for wiring is answered, and this result is used to find the full cost of several cryptanalytic attacks. In many cases this full cost is higher than the accepted complexity of a given algorithm based on the number of processor steps. The full costs of several cryptanalytic attacks are determined, including Shanks ’ method for computing discrete logarithms in cyclic groups of prime order n, which requires n 1/2+o(1) processor steps, but when all factors are taken into account, has full cost n 2/3+o(1). Other attacks analyzed are factoring with the number field sieve, generic attacks on block ciphers, attacks on double and triple encryption, and finding hash collisions. In many cases parallel collision search gives a significant asymptotic advantage over well-known generic attacks.

Citations

2057	Handbook of Applied Cryptography - Menezes, Oorschot, et al.
321	The Art of Computer Programming, vol. 3: Sorting and Searching - Knuth - 1973
193	Monte Carlo methods for index computation (mod p - Pollard - 1978
184	Lower bounds for discrete logarithms and related problems - Shoup - 1997
124	Parallel collision search with cryptanalytic applications - Oorschot, Wiener - 1999
105	A cryptanalytic time–memory trade-off - Hellman - 1980
46	Solving homogeneous linear equations over GF(2) via block Wiedemann algorithm - Coppersmith - 1994
46	A block Lanczos algorithm for finding dependencies over GF(2 - MONTGOMERY - 1995
38	Exhaustive Cryptanalysis of the NBS - Diffie, Hellman - 1977
37	On the Security of Multiple Encryption - Hellman - 1981
37	Speeding up Pollard's rho method for computing discrete logarithms, in: Algorithmic Number Theory Seminar - Teske - 1998
29	A Known Plaintext Attack on Two-Key Triple Encryption - Oorschot, Wiener
28	Three-dimensional VLSI: A case study - Rosenberg - 1983
18	Locality, communication and interconnect length in multicomputers - Vit'anyi - 1988
12	Time-memory-processor trade-offs - Amirazizi, Hellman - 1988
10	An improved algorithm for computing discrete logarithms over GF(p) and its cryptographic significance - POHLIG, HELLMAN - 1978
7	Analysis of bernstein’s factorization circuit - Lenstra, Shamir, et al. - 2002
5	Circuits for Integer Factorization: A - Bernstein - 2001
3	Preneel: On the Security of Double and 2-Key Triple Modes of Operation - Handschuh, B - 1999
3	Attacking triple encryption,” Fast Software Encryption’98, LNCS 1372 - Lucks - 1998