An Improved Known Plaintext Attack on PKZIP Encryption Algorithm

Jeong, Kyung Chul; Lee, Dong Hoon; Han, Daewan

doi:10.1007/978-3-642-31912-9_16

An Improved Known Plaintext Attack on PKZIP Encryption Algorithm

Kyung Chul Jeong¹⁷,
Dong Hoon Lee¹⁷ &
Daewan Han¹⁷

Conference paper

1658 Accesses
1 Citations
1 Altmetric

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7259))

Abstract

The PKZIP encryption algorithm has been widely used to protect the contents of compressed archives despite the known security weakness. Biham and Kocher proposed a known plaintext attack with the complexity 2⁴⁰ when 12 plaintext bytes are given. Stay suggested a different way to attack and addressed an idea which makes the complexity be reduced if the information of additional files encrypted under the same password is provided. However, the complexity of Stay’s attack is quite large when only one file is used.

In this paper, we propose a new attack based on Biham and Kocher’s attack. We introduce a method to reduce the complexity using the information of multi-files, so our attack can have the both advantages of previous two attacks. As a result, our attack becomes about (3.4)^l times faster than the attack of Biham and Kocher when l additional files are used. Our experiment shows that ours is at least 10 times faster than Stay’s. In addition, our attack can be improved in the chosen ciphertext model. It is about (21.3)^l times faster than Biham and Kocher’s attack with chosen plaintext of l additional files.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Biham, E., Kocher, P.: A Known Plaintext Attack on the PKZIP Stream Cipher. In: Preneel, B. (ed.) FSE 1994. LNCS, vol. 1008, pp. 144–153. Springer, Heidelberg (1995)
Chapter Google Scholar
Lipmaa, H., Wallén, J., Dumas, P.: On the Additive Differential Probability of Exclusive-Or. In: Roy, B., Meier, W. (eds.) FSE 2004. LNCS, vol. 3017, pp. 317–331. Springer, Heidelberg (2004)
Chapter Google Scholar
Stay, M.: ZIP Attacks with Reduced Known Plaintext. In: Matsui, M. (ed.) FSE 2001. LNCS, vol. 2355, pp. 125–134. Springer, Heidelberg (2002)
Chapter Google Scholar
PKWARE, Inc., APPNOTE.TXT - .ZIP File Format Specification. version 6.3.2, http://www.pkware.com/documents/casestudies/APPNOTE.TXT

Download references

Author information

Authors and Affiliations

The Attached Institute of ETRI, P.O. Box 1, Yuseong-Gu, Daejeon, Korea
Kyung Chul Jeong, Dong Hoon Lee & Daewan Han

Authors

Kyung Chul Jeong
View author publications
You can also search for this author in PubMed Google Scholar
Dong Hoon Lee
View author publications
You can also search for this author in PubMed Google Scholar
Daewan Han
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

(A06) 6503 School of Computer Science and Engineering, Pusan National University, San-30, JangJeon-Dong, 609-735, GeumJeong-Gu, Busan, South Korea
Howon Kim

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Jeong, K.C., Lee, D.H., Han, D. (2012). An Improved Known Plaintext Attack on PKZIP Encryption Algorithm. In: Kim, H. (eds) Information Security and Cryptology - ICISC 2011. ICISC 2011. Lecture Notes in Computer Science, vol 7259. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-31912-9_16

Download citation

DOI: https://doi.org/10.1007/978-3-642-31912-9_16
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-31911-2
Online ISBN: 978-3-642-31912-9
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics