pub: Rebuttal of Overtaking VEST (VEST P2.1) (2007)

19 May 2012

Text Size

“Systems built without requirements cannot fail; They merely offer surprises. Usually unpleasant!

Robert Morris, former Chief Scientist of the US National Security Agency (NSA), National Computer Security Center, 1995

Read more...
"The future ability of quantum computers might be a decade or two away, their future ability to break public-key cryptography has important implications for the encryption of highly sensitive information today. For these applications, we must already design new public-key cryptosystems and one-way functions that are immune to quantum cryptanalysis."

ARDA, Report of the Quantum Information Science and Technology Experts Panel, 2004

Read more...
"In the medium term, we need to be prepared for the eventuality that large quantum computers could be built: this would require an upgrade of most symmetric cryptographic algorithms and a completely new generation of public-key algorithms."

SecurIST, “D3.3 – ICT Security & Dependability Research beyond 2010: Final Strategy”, January 2007

Read more...

Home

Thursday, 20 November 2008 18:13

Authors:	Benjamin Gittins, Howard A. Landman
Organisation:	Synaptic Laboratories Limited
Date:	April, 2007
Keywords:	VEST, stream cipher, collision resistant hash, specifications
Electronic Publication:	PDF with embedded exhaustive analysis C code and test vectors
Abstract:	VEST is a set of four stream cipher families targeted to semiconductor applications. All VEST family members support efficient encryption, single pass authenticated encryption, and collision resistant hashing in the one low area module. VEST was submitted by Synaptic Laboratories to the ECRYPT NoE eSTREAM project in 2005. Recently, a single digit typographical error was identified in the VEST counter diffuser description. Shortly afterwards Antoine Joux and Jean-René Reinhard published collisions in the counter-diffuser based upon the erroneous description. By extending these collisions across the entire cipher state, they were able to explore various attack scenarios. We prove that the correction of the typographical error removes all the exploitable collisions in the counter diffuser during key and IV loading operations; thereby establishing that the Joux-Reinhard attacks are an artefact of the erroneous description. Complete test vectors are included.
Quote:
See:
Citation:	Benjamin Gittins, Howard A. Landman, "Rebuttal of overtaking VEST (VEST P2.1)", April 2007
Related work:	VEST P2.0 specifications

Last Updated on Sunday, 23 October 2011 08:56