A Related-Key Cryptanalysis of RC4

Grosul, Alexander; Wallach, Dan S.

Name:: TR00-358.pdf
Size:: 453.0Kb
Format:: PDF

View/Open

Author

Grosul, Alexander; Wallach, Dan S.

Date

June 8, 2000

Abstract

In this paper we present analysis of the RC4 stream cipher and show that for each 2048-bit key there exists a family of related keys, differing in one of the byte positions. The keystreams generated by RC4 for a key and its related keys are substantially similar in the initial hundred bytes before diverging. RC4 is most commonly used with a 128-bit key repeated 16 times;this variant does not suffer from the weaknesses we describe. We recommend that applications of RC4 with keys longer than 128 bits (and particularly those using the full 2048-bit keys) discard the initial 256 bytes of the keystream output.

Citation

Grosul, Alexander and Wallach, Dan S.. "A Related-Key Cryptanalysis of RC4." (2000) https://hdl.handle.net/1911/96275.

Type

Technical report

Citable link to this page

https://hdl.handle.net/1911/96275

Rights

You are granted permission for the noncommercial reproduction, distribution, display, and performance of this technical report in any format, but this permission is only for a period of forty-five (45) days from the most recent time that you verified that this technical report is still available from the Computer Science Department of Rice University under terms that include this permission. All other rights are reserved by the author(s).

Metadata

Show full item record

Collections

Computer Science Technical Reports [245]