Abstract
A very simple parallel architecture using a modified version of content-addressable memory (CAM) can be used to cheaply and efficiently encipher and decipher data with DES-like systems. This paper will describe how to implement DES on these modified content-addressable memories at speeds approaching some of the better specialized hardware. This implementation is often much more attractive for system designers because the CAM can be reprogrammed to encrypt the data with other DES-like systems such as Khufu or perform system tasks like data compression or graphics.
The CAM memory architecture is also easily extendable to build a large scale engine for exhaustively searching the entire keyspace. This paper estimates that it will be possible to build a machine to test 255 keys of DES in one day for $30 million. This design is much less hypothetical than some of the others in the literature because it is based upon hardware that will be available off-the-shelf in the late end of 1992. The architecture of this key search machine is much more attractive to an attacker because it is easily reprogrammable to handle modified DES-like algorithms such as the UNIX password system or Khufu.
Chapter PDF
Similar content being viewed by others
Keywords
- Data Encryption Standard
- Fast Software Encryption
- Content Addressable Memory
- Cipher Block Chain
- Adjacent Word
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Sharon Marie Britton. 8k-trit Database Accelerator with Error Detection. PhD thesis, Massachusetts Institute of Technology, February 1990.
Eli Biham and Adi Shamir. Differential cryptanalysis of Snefru, Khafte. REDOC-II, LOKI, and lucifer. In Crypto 91, Santa Barbara, California, 1991.
Whitfield Diffie and Martin Hellman. Exhaustive cryptanalysis of the nbs data encryption standard. Computer, 10(6):74–84, 1977.
David C. Feldmeier and Philip R. Karn. Unix password security-ten years later. In G. Brassard, editor, Advances in Cryptology: Proceedings of Crypto’ 89, pages 44–63, New York City, Berlin, 1989. Springer-Verlag.
Robert C. Fairfield, Alex Matusevich, and Joseph Plany. An Isi digital encryption processor. IEEE Communication, pages 23–27, July 1985.
Gilles Garon and Richard Outerbridge. Des watch: And examination of the sufficiency of the data encryption standard for financial institution’s information security in the 1990’s. Cryptologia, 15(3):177–193, July 1991.
Teuvo Kohonen. Content-Addressable Memories. Springer-Verlag, Berlin, New York City, 1987.
Ralph Merkle. Fast software encryption function. In A.J. Menezes and S.A. Van Stone, editors, Crypto 90, Berlin, New York City, 1990. Springer Verlag.
Carl H. Meyer and Stephen M. Matyas. Cryptography: New Dimension in Computer Security. John Wiley and Sons, New York, 1982.
NBS. Data encryption standard (des). Technical report, National Bureau of Standards (US), Federal Information Processing Standards, Publication 46, National Technical Information Services, Springfield, Virginia, April 1977.
J.V. Oldfield. Logic programs and an experimental architecture for their execution. Proceedings of the I.E.E.E. Part E, 133:163–167, 1986.
J.V. Oldfield, Charles D. Stormon, and M.R. Brule. The application of vlsi content-addressable memories to the acceleration of logic programming systems. In CompEuro 87, VLSI and Computers, pages 27–30, Hamburg, Germany, May 1987.
J.V. Oldfield, R.D. Williams, and N.E. Wiseman. Content-addressable memories for storing and processing recursively-divided images and trees. Electronics Letters, 23(6):262–263, 1987.
Robert Morris Sr. and Ken Thompson. Password security: A case history. Communications of the ACM, 22:594–597, November 1979.
Ingrid Verbauwhede, Frank Hoornaert, Joos Vandewalle, and Hugo J. De Man. Security and performance optimization of a new des encryption chip. IEEE Journal of Solid-State Circuits, pages 647–656, June 1988.
John Wade and Charles Sodini. A ternary content-addressable search engine. IEEE Journal of Solid-State Circuits, 24(4):1003–1013, August 1989.
Richard Zippel. Programming the data structure accelerator. In Proceedings of Jerusalem Conference on Information, Technology, Jerusalem, Israel, October 1990.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1993 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wayner, P.C. (1993). Content-Addressable Search Engines and DES-like Systems. In: Brickell, E.F. (eds) Advances in Cryptology — CRYPTO’ 92. CRYPTO 1992. Lecture Notes in Computer Science, vol 740. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-48071-4_42
Download citation
DOI: https://doi.org/10.1007/3-540-48071-4_42
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-57340-1
Online ISBN: 978-3-540-48071-6
eBook Packages: Springer Book Archive