Abstract
The PKZIP encryption algorithm has been widely used to protect the contents of compressed archives despite the known security weakness. Biham and Kocher proposed a known plaintext attack with the complexity 240 when 12 plaintext bytes are given. Stay suggested a different way to attack and addressed an idea which makes the complexity be reduced if the information of additional files encrypted under the same password is provided. However, the complexity of Stay’s attack is quite large when only one file is used.
In this paper, we propose a new attack based on Biham and Kocher’s attack. We introduce a method to reduce the complexity using the information of multi-files, so our attack can have the both advantages of previous two attacks. As a result, our attack becomes about (3.4)l times faster than the attack of Biham and Kocher when l additional files are used. Our experiment shows that ours is at least 10 times faster than Stay’s. In addition, our attack can be improved in the chosen ciphertext model. It is about (21.3)l times faster than Biham and Kocher’s attack with chosen plaintext of l additional files.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Biham, E., Kocher, P.: A Known Plaintext Attack on the PKZIP Stream Cipher. In: Preneel, B. (ed.) FSE 1994. LNCS, vol. 1008, pp. 144–153. Springer, Heidelberg (1995)
Lipmaa, H., Wallén, J., Dumas, P.: On the Additive Differential Probability of Exclusive-Or. In: Roy, B., Meier, W. (eds.) FSE 2004. LNCS, vol. 3017, pp. 317–331. Springer, Heidelberg (2004)
Stay, M.: ZIP Attacks with Reduced Known Plaintext. In: Matsui, M. (ed.) FSE 2001. LNCS, vol. 2355, pp. 125–134. Springer, Heidelberg (2002)
PKWARE, Inc., APPNOTE.TXT - .ZIP File Format Specification. version 6.3.2, http://www.pkware.com/documents/casestudies/APPNOTE.TXT
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Jeong, K.C., Lee, D.H., Han, D. (2012). An Improved Known Plaintext Attack on PKZIP Encryption Algorithm. In: Kim, H. (eds) Information Security and Cryptology - ICISC 2011. ICISC 2011. Lecture Notes in Computer Science, vol 7259. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-31912-9_16
Download citation
DOI: https://doi.org/10.1007/978-3-642-31912-9_16
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-31911-2
Online ISBN: 978-3-642-31912-9
eBook Packages: Computer ScienceComputer Science (R0)