On the analysis and implementation of light weight cryptography in cyber phisical system

• Project/Area Number: 26330155
• Research Category: Grant-in-Aid for Scientific Research (C)
• Allocation Type: Multi-year Fund
• Section: 一般
• Research Field: Information security
• Research Institution: Kobe University
• Principal Investigator: Morii Masakatu 神戸大学, 工学研究科, 教授 (00220038)
• Project Period (FY): 2014-04-01 – 2017-03-31
• Project Status: Completed (Fiscal Year 2016)
• Budget Amount: ¥4,810,000 (Direct Cost: ¥3,700,000、Indirect Cost: ¥1,110,000); Fiscal Year 2016: ¥1,170,000 (Direct Cost: ¥900,000、Indirect Cost: ¥270,000); Fiscal Year 2015: ¥1,430,000 (Direct Cost: ¥1,100,000、Indirect Cost: ¥330,000); Fiscal Year 2014: ¥2,210,000 (Direct Cost: ¥1,700,000、Indirect Cost: ¥510,000)
• Keywords: 共通鍵暗号 / 軽量暗号 / サイバーフィジカル / IoT / ネットワークセキュリティ / 解読 / 安全性評価 / 公開鍵暗号 / SSL/TLS / 無線LAN / 暗号 / 線形解読法 / ナップザック暗号

Outline of Final Research Achievements

First, we propose a new full plaintext recovery attack. Our proposed attack can recover all plaintext bytes from 233 ciphertexts. Secondly, we propose the interaction between processes running on the different VMs as an alternative means of getting accurate clock cycles. We also cover POODLE attack. It's a kind of Man-in-the-middle attack against SSLv3.0, allowing to extract secure HTTP cookies. We prove the feasibility of this attack with a practical experiment. Thirdly, we propose an attack on high-density knapsack cryptosystem. This attack uses pseudo intermediary plaintext that is not the solution for subset sum problem. We remark about the knapsack cryptosystem the attack is effective. Finally, we propose a new method to find conditional differential characteristics on NLFSR-based stream ciphers. We apply our technique to Grain v1. We show the conditional differential distinguisher on Grain v1 up to 114 rounds and have 240 weak keys.

Research Products

• [Journal Article] How to Efficiently Exploit Different Types of Biases for Plaintext Recovery of RC4 (2017)
  • Author(s): Yuhei Watanabe, Takanori Isobe, Toshihiro Ohigashi, and Masakatu Morii
  • Journal Title: EICE Trans. Fundamentals Volume: E100-A Pages: 803-810
  • NAID: 130005397029
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] Proposal of WEP Operation with Strong IV and Its Implementation (2017)
  • Author(s): Yuhei Watanabe, Takahiro Iriyama, and Masakatu Morii
  • Journal Title: IPSJ Journal of Information Processing Volume: 25 Pages: 288-295
  • NAID: 130005439853
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] SSL Client Authentication with TPM (2016)
  • Author(s): Shohei Kakei, Masami Mohri, Yoshiaki Shiraishi, Masakatu Morii
  • Journal Title: IEICE TRANSACTIONS on Information and Systems Volume: E99-D Pages: 1052-1061
  • NAID: 130005141395
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] Efficient Implementations for Practical Linear Cryptanalysis and Its Application to FEAL-8X (2016)
  • Author(s): Sho Sakikoyama, Yosuke Todo, Kazumaro Aoki, Masakatu Morii
  • Journal Title: IEICE Trans. Fundamentals Volume: EA99-A Pages: 31-38
  • NAID: 130005115253
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] Bit-Based Division Property and Application to Simon Family (2016)
  • Author(s): Yosuke Todo and Masakatu Morii
  • Journal Title: Lecture Notes on Computer Science Volume: 9665 Pages: 1-15
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] Expanding Weak-key Space of RC4 (2014)
  • Author(s): Atsushi Nagao, Toshihiro Ohigashi, Takanori Isobe, Masakatu Morii
  • Journal Title: IPSJ Journal of Information Processing Volume: 22 Pages: 357-365
  • NAID: 130003394482
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] Full Plaintext Recovery Attacks on RC4 Using Multiple Biases (2014)
  • Author(s): Toshihiro Ohigashi, Takanori Isobe, Yuhei Watanabe, Masakatu Morii
  • Journal Title: IEICE Trans. Fund. Volume: E98-A Pages: 81-98
  • NAID: 130004770880
  • Peer Reviewed / Acknowledgement Compliant
• [Journal Article] How Much Can Complexity of Linear Cryptanalysis be Reduced? (2014)
  • Author(s): Sho Sakikoyama, Yosuke Todo, Kazumaro Aoki, Masakatu Morii
  • Journal Title: Proc. ICISC2014, LNCS, Springer-Verlag Volume: 8949 Pages: 117-131
  • Peer Reviewed / Acknowledgement Compliant
• [Presentation] Compact Representation for Division Property (2016)
  • Author(s): Yosuke Todo and Masakatu Morii
  • Organizer: 15th International Conference on Cryptology and Network Security
  • Place of Presentation: Milan, Italy
  • Year and Date: 2016-11-14
  • Int'l Joint Research
• [Presentation] New Conditional Differential Cryptanalysis for NLFSR-Based Stream Ciphers and Application to Grain v1 (2016)
  • Author(s): Yuhei Watanabe, Yosuke Todo, and Masakatu Morii
  • Organizer: 11th Asia Joint Conference on Information Security
  • Place of Presentation: Fukuoka, Japan
  • Year and Date: 2016-08-05
  • Int'l Joint Research
• [Presentation] ブロック暗号構造に対する汎用解析手法の提案とKuznyechikの解析, (2016)
  • Author(s): 藤堂洋介, 森井昌克
  • Organizer: 2016年暗号と情報セキュリティシンポジウム
  • Place of Presentation: ANAクラウンプラザホテル熊本ニュースカイ（熊本県・熊本市）
  • Year and Date: 2016-01-19
• [Presentation] NLFSR型ストリーム暗号に対する条件付差分特性の解析 (2016)
  • Author(s): 渡辺優平, 藤堂洋介, 森井昌克
  • Organizer: 2016年暗号と情報セキュリティシンポジウム
  • Place of Presentation: ANAクラウンプラザホテル熊本ニュースカイ（熊本県・熊本市）
  • Year and Date: 2016-01-19
• [Presentation] RC4におけるMantinらの弱鍵を用いた攻撃の改良 (2016)
  • Author(s): 入山敬大, 渡辺優平, 森井昌克
  • Organizer: 2016年暗号と情報セキュリティシンポジウム
  • Place of Presentation: ANAクラウンプラザホテル熊本ニュースカイ（熊本県・熊本市）
  • Year and Date: 2016-01-19
• [Presentation] 解読可能な高密度ナップザック暗号のクラス――現実的なパラメータを有するナップザック暗号は解読できる―― (2016)
  • Author(s): 草薙祥広, 森井昌克
  • Organizer: 2016年暗号と情報セキュリティシンポジウム
  • Place of Presentation: ANAクラウンプラザホテル熊本ニュースカイ（熊本県・熊本市）
  • Year and Date: 2016-01-19
• [Presentation] On vulnerability of SSL/TLS and that implementation; Attacks on Broadcast RC4 and others (2015)
  • Author(s): Masakatu Morii
  • Organizer: The Third International Symposium on Computing and Networking
  • Place of Presentation: 札幌市産業振興センター（北海道・札幌市）
  • Year and Date: 2015-12-08
  • Int'l Joint Research / Invited
• [Presentation] 難読化コードに対する暗号関数特定手法の提案 (2015)
  • Author(s): 古川凌也, 伊沢亮一, 森井昌克, 井上大介, 中尾 康二
  • Organizer: コンピュータセキュリティシンポジウム2015
  • Place of Presentation: 長崎ブリックホール（長崎県・長崎市）
  • Year and Date: 2015-10-21
• [Presentation] WEPの安全な運用方法とその実装について (2015)
  • Author(s): 渡辺優平, 入山敬大, 森井昌克
  • Organizer: 第14回情報科学技術フォーラム
  • Place of Presentation: 愛媛大学（愛媛県・松山市）
  • Year and Date: 2015-09-15
• [Presentation] OpenSSLキャッシュタイミング攻撃の実現性について (2015)
  • Author(s): 長谷川淳, 渡辺優平, 森井昌克
  • Organizer: 第14回情報科学技術フォーラム
  • Place of Presentation: 愛媛大学（愛媛県・松山市）
  • Year and Date: 2015-09-15
• [Presentation] メモリ空間における 暗号化/復号関数の位置特定に関する検討 (2015)
  • Author(s): 古川凌也, 伊沢亮一, 森井昌克, 井上大介, 中尾康二
  • Organizer: 電子情報通信学会情報通信システムセキュリティ研究会
  • Place of Presentation: 九州工業大学（福岡県・北九州市）
  • Year and Date: 2015-06-11
• [Presentation] OpenSSLにおけるCREAM脆弱性について (2015)
  • Author(s): 長谷川淳, 渡辺優平, 森井昌克
  • Organizer: 電子情報通信学会情報通信システムセキュリティ研究会
  • Place of Presentation: 九州工業大学（福岡県・北九州市）
  • Year and Date: 2015-06-11
• [Presentation] Integral Attackに対するSPECK32の安全性評価 (2015)
  • Author(s): 先小山翔, 森井 昌克
  • Organizer: 暗号と情報セキュリティシンポジウム(SCIS2015)
  • Place of Presentation: リーガロイヤルホテル小倉
  • Year and Date: 2015-01-20 – 2015-01-23
• [Presentation] Simon48に対するIntegral攻撃 (2015)
  • Author(s): 飯塚大貴, 藤堂洋介, 森井昌克
  • Organizer: 暗号と情報セキュリティシンポジウム(SCIS2015)
  • Place of Presentation: リーガロイヤルホテル小倉
  • Year and Date: 2015-01-20 – 2015-01-23
• [Presentation] 高密度ナップザック暗号に対する攻撃 (2014)
  • Author(s): 草薙祥広, 長尾篤, 森井昌克
  • Organizer: コンピュータセキュリティシンポジウム(CSS2014)
  • Place of Presentation: 札幌コンベンションセンター
  • Year and Date: 2014-10-22 – 2014-10-24
• [Presentation] RC4に対する平文回復攻撃の改良, (2014)
  • Author(s): 大東俊博, 渡辺優平, 森井昌克
  • Organizer: コンピュータセキュリティシンポジウム(CSS2014)
  • Place of Presentation: 札幌コンベンションセンター
  • Year and Date: 2014-10-22 – 2014-10-24