Article

A Timing Attack on RC5

Authors:

Helena Handschuh,

Howard M. HeysAuthors Info & Claims

SAC '98: Proceedings of the Selected Areas in Cryptography

Pages 306 - 318

Published: 17 August 1998 Publication History

Abstract

This paper describes a timing attack on the RC5 block encryption algorithm. The analysis is motivated by the possibility that some implementations of RC5 could result in the data-dependent rotations taking a time that is a function of the data. Assuming that encryption timing measurements can be made which enable the cryptanalyst to deduce the total amount of rotations carried out during an encryption, it is shown that, for the nominal version of RC5, only a few thousand ciphertexts are required to determine 5 bits of the last half-round subkey with high probability. Further, it is shown that it is practical to determine the whole secret key with about 2²⁰ encryption timings with a time complexity that can be as low as 2²⁸.

References

[1]

R. L. Rivest. The RC5 Encryption Algorithm. In Fast Software Encryption - Second InternationalWorkshop, Leuven, Belgium, LNCS 1008, pages 86-96, Springer-Verlag, 1995.

Google Scholar

[2]

B. S. Kaliski and Y. L. Yin. On Differential and Linear Cryptanalysis of the RC5 Encryption Algorithm. In Advances in Cryptology - Crypto'95, LNCS 963, pages 171-184. Springer-Verlag, 1995.

Crossref

Google Scholar

[3]

L. R. Knudsen and W. Meier. Improved Differential Attacks on RC5. In Advances in Cryptology - Crypto'96, LNCS 1109, pages 216-228, Springer-Verlag, 1996.

Google Scholar

[4]

Biryukov and Kushilevitz. Improved Cryptanalysis of RC5. In Advances in Cryptology - Eurocrypt'98, LNCS, pages 85-99, Springer-Verlag, 1998.

Google Scholar

[5]

A. A. Selcuk. New results in linear cryptanalysis of RC5. In Fast Software Encryption - Fifth International Workshop, Paris, France, LNCS, pages 1-16, Springer-Verlag, 1998.

Google Scholar

[6]

H.M. Heys, Linearly Weak Keys of RC5. IEE Electronics Letters, vol. 33, no. 10, pp. 836-837, 1997.

Google Scholar

[7]

Paul C. Kocher. Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems. In Advances in Cryptology - Crypto'96, LNCS 1109, pages 104- 113, Springer-Verlag, 1996.

Google Scholar

[8]

H. Handschuh, A Timing Attack on RC5. In Workshop Record of SAC '98, Queen's University, Kingston, Canada, pages 318-329, 1998.

Crossref

Google Scholar

[9]

H.M. Heys, A Timing Attack on RC5. In Workshop Record of SAC '98, Queen's University, Kingston, Canada, pages 330-343, 1998.

Google Scholar

Cited By

View all

Danger JDebande NGuilley SSouissi YKnoop JSalapura VKoren IPelosi G(2014)High-order timing attacksProceedings of the First Workshop on Cryptography and Security in Computing Systems10.1145/2556315.2556316(7-12)Online publication date: 20-Jan-2014
https://dl.acm.org/doi/10.1145/2556315.2556316
Stefan DRusso ABuiras PLevy AMitchell JMaziéres D(2012)Addressing covert termination and timing channels in concurrent information flow systemsACM SIGPLAN Notices10.1145/2398856.236455747:9(201-214)Online publication date: 9-Sep-2012
https://dl.acm.org/doi/10.1145/2398856.2364557
Stefan DRusso ABuiras PLevy AMitchell JMaziéres DThiemann PFindler R(2012)Addressing covert termination and timing channels in concurrent information flow systemsProceedings of the 17th ACM SIGPLAN international conference on Functional programming10.1145/2364527.2364557(201-214)Online publication date: 9-Sep-2012
https://dl.acm.org/doi/10.1145/2364527.2364557
Show More Cited By

A Timing Attack on RC5

Recommendations

Known Plaintext Correlation Attack against RC5
CT-RSA '02: Proceedings of the The Cryptographer's Track at the RSA Conference on Topics in Cryptology

We investigate a known plaintext attack on RC5 based on correlations. Compared with the best previous known-plaintext attack on RC5-32, a linear cryptanalysis by Borst, Preneel, and Vandewalle, our attack applies to a larger number of rounds. RC5-32 ...
Improved Differential Attacks on RC5
CRYPTO '96: Proceedings of the 16th Annual International Cryptology Conference on Advances in Cryptology

In this paper we investigate the strength of the secret-key algorithm RC5 newly proposed by Ron Rivest. The target version of RC5 works on words of 32 bits, has 12 rounds and a user-selected key of 128 bits. At Crypto'95 Kaliski and Yin estimated the ...
On Differential and Linear Crytoanalysis of the RC5 Encryption Algorithm
CRYPTO '95: Proceedings of the 15th Annual International Cryptology Conference on Advances in Cryptology

This paper analyzes the security of the RC5 encryption algorithm against differential and linear cryptanalysis. RC5 is a new block cipher recently designed by Ron Rivest. It has a variable word size, a variable number of rounds, and a variable-length ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

SAC '98: Proceedings of the Selected Areas in Cryptography

August 1998

376 pages

ISBN:3540658947

Publisher

Springer-Verlag

Berlin, Heidelberg

Publication History

Published: 17 August 1998

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

8
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 25 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Danger JDebande NGuilley SSouissi YKnoop JSalapura VKoren IPelosi G(2014)High-order timing attacksProceedings of the First Workshop on Cryptography and Security in Computing Systems10.1145/2556315.2556316(7-12)Online publication date: 20-Jan-2014
https://dl.acm.org/doi/10.1145/2556315.2556316
Stefan DRusso ABuiras PLevy AMitchell JMaziéres D(2012)Addressing covert termination and timing channels in concurrent information flow systemsACM SIGPLAN Notices10.1145/2398856.236455747:9(201-214)Online publication date: 9-Sep-2012
https://dl.acm.org/doi/10.1145/2398856.2364557
Stefan DRusso ABuiras PLevy AMitchell JMaziéres DThiemann PFindler R(2012)Addressing covert termination and timing channels in concurrent information flow systemsProceedings of the 17th ACM SIGPLAN international conference on Functional programming10.1145/2364527.2364557(201-214)Online publication date: 9-Sep-2012
https://dl.acm.org/doi/10.1145/2364527.2364557
Bakhshi BSadeghiyan B(2007)A Timing Attack on Blakley's Modular Multiplication Algorithm, and Applications to DSAProceedings of the 5th international conference on Applied Cryptography and Network Security10.1007/978-3-540-72738-5_9(129-140)Online publication date: 5-Jun-2007
https://dl.acm.org/doi/10.1007/978-3-540-72738-5_9
Gruska D(2006)Information-flow attacks based on limited observationsProceedings of the 6th international Andrei Ershov memorial conference on Perspectives of systems informatics10.5555/1760700.1760722(223-234)Online publication date: 27-Jun-2006
https://dl.acm.org/doi/10.5555/1760700.1760722
Molnar DPiotrowski MSchultz DWagner D(2005)The program counter security modelProceedings of the 8th international conference on Information Security and Cryptology10.1007/11734727_14(156-168)Online publication date: 1-Dec-2005
https://dl.acm.org/doi/10.1007/11734727_14
Lanotte RMaggiolo-Schettini ATini S(2004)Information flow in hybrid systemsACM Transactions on Embedded Computing Systems10.1145/1027794.10277993:4(760-799)Online publication date: 1-Nov-2004
https://dl.acm.org/doi/10.1145/1027794.1027799
Handschuh HPaillier PStern J(1999)Probing Attacks on Tamper-Resistant DevicesProceedings of the First International Workshop on Cryptographic Hardware and Embedded Systems10.5555/648252.752382(303-315)Online publication date: 12-Aug-1999
https://dl.acm.org/doi/10.5555/648252.752382

View Options

View options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

References

Cited By

Recommendations

Known Plaintext Correlation Attack against RC5

Improved Differential Attacks on RC5

On Differential and Linear Crytoanalysis of the RC5 Encryption Algorithm

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations