1
Faculty of Electrical Engineering Sharif University of Technology
2
Electronics Research Center Sharif University of Technology
Abstract
WG is a new synchronous hardware oriented stream cipher, corresponding to Profile 2 of the ECRYPT call for stream cipher primitives. Its key length is variable between 80 and 128 bits. The WG cipher has been designed to produce key stream with guaranteed randomness properties. In this paper we present a linear approximation based distinguishing attack against a simplified version (without Trace Function) of WG 128. Our attack requires 232 output words of key stream generator to distinguish the output of simplified version of WG 128 from a truly random bit sequence.
Shadman, A., Mohajeri, J., & Salmasizadeh, M. (2010). LINEAR DISTINGUISHING ATTACK ON A SIMPLIFIED VERSION OF WG 128. Sharif Journal of Civil Engineering, vol. 25(No. 52), 57-61.
MLA
A. Shadman; J. Mohajeri; M. Salmasizadeh. "LINEAR DISTINGUISHING ATTACK ON A SIMPLIFIED VERSION OF WG 128". Sharif Journal of Civil Engineering, vol. 25, No. 52, 2010, 57-61.
HARVARD
Shadman, A., Mohajeri, J., Salmasizadeh, M. (2010). 'LINEAR DISTINGUISHING ATTACK ON A SIMPLIFIED VERSION OF WG 128', Sharif Journal of Civil Engineering, vol. 25(No. 52), pp. 57-61.
VANCOUVER
Shadman, A., Mohajeri, J., Salmasizadeh, M. LINEAR DISTINGUISHING ATTACK ON A SIMPLIFIED VERSION OF WG 128. Sharif Journal of Civil Engineering, 2010; vol. 25(No. 52): 57-61.
)