Skip to main content
SpringerLink
Log in

Cryptanalysis of Acorn in Nonce-Reuse Setting

  • Conference paper
  • First Online:
Book cover Information Security and Cryptology (Inscrypt 2017)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 10726))

Included in the following conference series:

Abstract

Acorn is a third-round candidate of the CAESAR competition. It is a lightweight authenticated stream cipher. In this paper, we show how to recover the initial state of Acorn when one pair of Key and IV is used to encrypt three messages. Our method contains two main steps: (1) gathering different states; (2) retrieving linear equations. At the first step, we demonstrate how to gather the relation between states when two different plaintexts are encrypted under the same nonce. And at the second step, we exploit how to retrieve a system of linear equations with respect to the initial state, and how to recover the initial state from this system of equations. We apply this method to both Acorn v2 and Acorn v3. The time complexity to recover the initial state of Acorn v2 is \(2^{78} c\), where c is the time complexity of solving linear equations. It is lower than that of the previous methods. For Acorn v3, we can recover the initial state with the time complexity of \(2^{120.6}c\), lower than that of the exhaustion attack. We also apply it on shrunk ciphers with similar structure and properties of Acorn v2 and Acorn v3 to prove the validity of our method. This paper is the first time to analyze Acorn v3 when a nonce is reused and our method provides some insights into the diffusion ability of such stream ciphers.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Wu, H.: Acorn: a lightweight authenticated cipher (v3) (2016). http://competitions.cr.yp.to/round3/Acornv3.pdf

  2. Wu, H.: Acorn: a lightweight authenticated cipher (v1) (2014). http://competitions.cr.yp.to/round1/Acornv1.pdf

  3. Wu, H.: Acorn: a lightweight authenticated cipher (v2) (2015). http://competitions.cr.yp.to/round2/Acornv2.pdf

  4. Liu, M., Lin, D.: Cryptanalysis of Lightweight Authenticated Cipher ACORN. Posed on the crypto-competition mailing list (2014)

    Google Scholar 

  5. Chaigneau, C., Fuhr, T., Gilbert, H.: Full Key-recovery on Acorn in Nonce-reuse and Decryption-misuse settings. Posed on the crypto-competition mailing list (2015)

    Google Scholar 

  6. Salam, M.I., Bartlett, H., Dawson, E., Pieprzyk, J., Simpson, L., Wong, K.K.-H.: Investigating cube attacks on the authenticated encryption stream cipher Acorn. In: Batten, L., Li, G. (eds.) ATIS 2016. CCIS, vol. 651, pp. 15–26. Springer, Singapore (2016). https://doi.org/10.1007/978-981-10-2741-3_2

    Google Scholar 

  7. Salam, M.I., Wong, K.K.-H., Bartlett, H., Simpson, L., Dawson, E., Pieprzyk, J.: Finding state collisions in the authenticated encryption stream cipher Acorn. In: Proceedings of the Australasian Computer Science Week Multiconference, p. 36. ACM (2016)

    Google Scholar 

  8. Lafitte, F., Lerman, L., Markowitch, O., Heule, D.V.: SAT-based cryptanalysis of Acorn. IACR Cryptology ePrint Archive, 521 (2016)

    Google Scholar 

  9. Josh, R.J., Sarkar, S.: Some observations on Acorn v1 and Trivia-SC. In: Lightweight Cryptography Workshop, NIST, USA, pp. 20–21 (2015)

    Google Scholar 

  10. Roy, D., Mukhopadhyay, S.: Some results on ACORN. IACR cryptology ePrint report 1132 (2016)

    Google Scholar 

  11. https://groups.google.com/forum/#!forum/crypto-competitions/dzzNcybqFP4

Download references

Acknowledgment

The authors would like to thank anonymous reviewers for considerate and helpful comments. This work is supported by National Natural Science Foundation of China (Grant No. 61379139) and the “Strategic Priority Research Program” of the Chinese Academy of Sciences (Grant No. XDA06010701).

Author information

Authors and Affiliations

  1. State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China

    Xiaojuan Zhang & Dongdai Lin

  2. School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China

    Xiaojuan Zhang

Authors
  1. Xiaojuan Zhang
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Dongdai Lin
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Xiaojuan Zhang .

Editor information

Editors and Affiliations

  1. Xidian University, Xi’an, China

    Xiaofeng Chen

  2. SKLOIS, Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China

    Dongdai Lin

  3. Columbia University, New York, New York, USA

    Moti Yung

A Appendix

A Appendix

Table 2. Equations of the toy cipher A
Full size table
Table 3. Equations of the toy cipher B
Full size table

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG, part of Springer Nature

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Zhang, X., Lin, D. (2018). Cryptanalysis of Acorn in Nonce-Reuse Setting. In: Chen, X., Lin, D., Yung, M. (eds) Information Security and Cryptology. Inscrypt 2017. Lecture Notes in Computer Science(), vol 10726. Springer, Cham. https://doi.org/10.1007/978-3-319-75160-3_21

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-75160-3_21

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-75159-7

  • Online ISBN: 978-3-319-75160-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation