{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,17]],"date-time":"2025-12-17T08:49:58Z","timestamp":1765961398441,"version":"3.40.3"},"publisher-location":"Cham","reference-count":37,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030778859"},{"type":"electronic","value":"9783030778866"}],"license":[{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021]]},"DOI":"10.1007\/978-3-030-77886-6_6","type":"book-chapter","created":{"date-parts":[[2021,6,15]],"date-time":"2021-06-15T23:06:10Z","timestamp":1623798370000},"page":"155-183","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":15,"title":["Cryptanalysis of the GPRS Encryption Algorithms GEA-1 and GEA-2"],"prefix":"10.1007","author":[{"given":"Christof","family":"Beierle","sequence":"first","affiliation":[]},{"given":"Patrick","family":"Derbez","sequence":"additional","affiliation":[]},{"given":"Gregor","family":"Leander","sequence":"additional","affiliation":[]},{"given":"Ga\u00ebtan","family":"Leurent","sequence":"additional","affiliation":[]},{"given":"H\u00e5vard","family":"Raddum","sequence":"additional","affiliation":[]},{"given":"Yann","family":"Rotella","sequence":"additional","affiliation":[]},{"given":"David","family":"Rupprecht","sequence":"additional","affiliation":[]},{"given":"Lukas","family":"Stennes","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2021,6,16]]},"reference":[{"key":"6_CR1","unstructured":"Anderson, R.J.: A5 (was hacking digital phones). Newsgroup Communication (1994). http:\/\/yarchive.net\/phone\/gsmcipher.html. Accessed 4 Mar 2021"},{"key":"6_CR2","unstructured":"Berlekamp, E.R.: Algebraic Coding Theory. McGraw-Hill Series in Systems Science. McGraw-Hill (1968). http:\/\/www.worldcat.org\/oclc\/00256659"},{"issue":"3","key":"6_CR3","doi-asserted-by":"publisher","first-page":"177","DOI":"10.1515\/JMC.2009.009","volume":"3","author":"L Bettale","year":"2009","unstructured":"Bettale, L., Faug\u00e8re, J., Perret, L.: Hybrid approach for solving multivariate systems over finite fields. J. Math. Cryptol. 3(3), 177\u2013197 (2009). https:\/\/doi.org\/10.1515\/JMC.2009.009","journal-title":"J. Math. Cryptol."},{"key":"6_CR4","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-19574-7","volume-title":"Selected Areas in Cryptography","year":"2011","unstructured":"Biryukov, A., Gong, G., Stinson, D.R. (eds.): SAC 2010. LNCS, vol. 6544. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-19574-7"},{"key":"6_CR5","volume-title":"Theory and Practice of Error Control Codes","author":"RE Blahut","year":"1983","unstructured":"Blahut, R.E.: Theory and Practice of Error Control Codes. Addison-Wesley, Boston (1983)"},{"key":"6_CR6","doi-asserted-by":"publisher","unstructured":"Bogdanov, A., Rechberger, C.: A 3-subset meet-in-the-middle attack: cryptanalysis of the lightweight block cipher KTANTAN. In: Biryukov et al. [4], pp. 229\u2013240. https:\/\/doi.org\/10.1007\/978-3-642-19574-7_16","DOI":"10.1007\/978-3-642-19574-7_16"},{"key":"6_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"203","DOI":"10.1007\/978-3-642-15031-9_14","volume-title":"Cryptographic Hardware and Embedded Systems, CHES 2010","author":"C Bouillaguet","year":"2010","unstructured":"Bouillaguet, C., et al.: Fast exhaustive search for polynomial systems in $${\\mathbb{F}_2}$$. In: Mangard, S., Standaert, F.-X. (eds.) CHES 2010. LNCS, vol. 6225, pp. 203\u2013218. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-15031-9_14"},{"key":"6_CR8","unstructured":"Brookson, C.: GPRS Security (2001). https:\/\/web.archive.org\/web\/20120914110208\/www.brookson.com\/gsm\/gprs.pdf. (snapshot of 14 September 2012)"},{"key":"6_CR9","doi-asserted-by":"publisher","unstructured":"Carlet, C., Crama, Y., Hammer, P.L.: Boolean functions for cryptography and error-correcting codes. In: Crama, Y., Hammer, P.L. (eds.) Boolean Models and Methods in Mathematics, Computer Science, and Engineering, pp. 257\u2013397. Cambridge University Press (2010). https:\/\/doi.org\/10.1017\/cbo9780511780448.011","DOI":"10.1017\/cbo9780511780448.011"},{"issue":"1","key":"6_CR10","doi-asserted-by":"publisher","first-page":"46","DOI":"10.1109\/99.660313","volume":"5","author":"L Dagum","year":"1998","unstructured":"Dagum, L., Menon, R.: OpenMP: an industry standard API for shared-memory programming. IEEE Comput. Sci. Eng. 5(1), 46\u201355 (1998)","journal-title":"IEEE Comput. Sci. Eng."},{"key":"6_CR11","unstructured":"Tomcs\u00e1nyi, D.P., Weyres, M., Simao, P.: Analysis of EGPRS Ciphering Algorithms used Worldwide. https:\/\/www.umlaut.com\/en\/analysis-of-egprs-ciphering-algorithms-used-worldwide. (to appear)"},{"key":"6_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1007\/978-3-540-77026-8_8","volume-title":"Progress in Cryptology \u2013 INDOCRYPT 2007","author":"O Dunkelman","year":"2007","unstructured":"Dunkelman, O., Sekar, G., Preneel, B.: Improved meet-in-the-middle attacks on reduced-round DES. In: Srinathan, K., Rangan, C.P., Yung, M. (eds.) INDOCRYPT 2007. LNCS, vol. 4859, pp. 86\u2013100. Springer, Heidelberg (2007). https:\/\/doi.org\/10.1007\/978-3-540-77026-8_8"},{"key":"6_CR13","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"457","DOI":"10.1007\/978-3-662-53018-4_17","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"S Duval","year":"2016","unstructured":"Duval, S., Lallemand, V., Rotella, Y.: Cryptanalysis of the FLIP family of stream ciphers. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9814, pp. 457\u2013475. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_17"},{"key":"6_CR14","unstructured":"ETSI: ETSI \u2013 Coordinated Vulnerability Disclosure. https:\/\/www.etsi.org\/standards\/coordinated-vulnerability-disclosure. Accessed 4 Mar 2021"},{"key":"6_CR15","unstructured":"ETSI: Security algorithms group of experts (SAGE); report on the specification, evaluation and usage of the GSM GPRS encryption algorithm (GEA). Technical report (1998). https:\/\/www.etsi.org\/deliver\/etsi_tr\/101300_101399\/101375\/01.01.01_60\/tr_101375v010101p.pdf. Accessed 8 Oct 2020"},{"key":"6_CR16","unstructured":"ETSI: Digital cellular telecommunications system (phase 2+) (GSM); security related network functions (3GPP TS 43.020 version 15.0.0 release 15). Technical Specification (2018). https:\/\/www.etsi.org\/deliver\/etsi_ts\/143000_143099\/143020\/15.00.00_60\/ts_143020v150000p.pdf. Accessed 8 Oct 2020"},{"key":"6_CR17","unstructured":"GCF: GCF \u2013 Global Certification Forum. https:\/\/www.globalcertificationforum.org\/. Accessed 4 Mar 2021"},{"key":"6_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"239","DOI":"10.1007\/3-540-69053-0_17","volume-title":"Advances in Cryptology \u2014 EUROCRYPT \u201997","author":"JD Goli\u0107","year":"1997","unstructured":"Goli\u0107, J.D.: Cryptanalysis of alleged A5 stream cipher. In: Fumy, W. (ed.) EUROCRYPT 1997. LNCS, vol. 1233, pp. 239\u2013255. Springer, Heidelberg (1997). https:\/\/doi.org\/10.1007\/3-540-69053-0_17"},{"key":"6_CR19","unstructured":"GSMA: GSMA \u2013 Coordinated Vulnerability Disclosure Programme. https:\/\/www.gsma.com\/security\/gsma-coordinated-vulnerability-disclosure-programme\/. Accessed 4 Mar 2021"},{"key":"6_CR20","unstructured":"Hoffman, K., Kunze, R.A.: Linear Algebra. PHI Learning (2004). http:\/\/www.worldcat.org\/isbn\/8120302702"},{"key":"6_CR21","doi-asserted-by":"publisher","unstructured":"Kalenderi, M., Pnevmatikatos, D.N., Papaefstathiou, I., Manifavas, C.: Breaking the GSM A5\/1 cryptography algorithm with rainbow tables and high-end FPGAS. In: Koch, D., Singh, S., T\u00f8rresen, J. (eds.) 22nd International Conference on Field Programmable Logic and Applications (FPL), Oslo, Norway, 29\u201331 August 2012, pp. 747\u2013753. IEEE (2012). https:\/\/doi.org\/10.1109\/FPL.2012.6339146","DOI":"10.1109\/FPL.2012.6339146"},{"key":"6_CR22","doi-asserted-by":"publisher","unstructured":"Khovratovich, D., Naya-Plasencia, M., R\u00f6ck, A., Schl\u00e4ffer, M.: Cryptanalysis of Luffa v2 components. In: Biryukov et al. [4], pp. 388\u2013409. https:\/\/doi.org\/10.1007\/978-3-642-19574-7_26","DOI":"10.1007\/978-3-642-19574-7_26"},{"key":"6_CR23","unstructured":"Koops, B.J.: Crypto law survey (2013). http:\/\/www.cryptolaw.org. Accessed 8 Oct 2020"},{"key":"6_CR24","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"126","DOI":"10.1007\/978-3-642-10366-7_8","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2009","author":"M Lamberger","year":"2009","unstructured":"Lamberger, M., Mendel, F., Rechberger, C., Rijmen, V., Schl\u00e4ffer, M.: Rebound distinguishers: results on the full whirlpool compression function. In: Matsui, M. (ed.) ASIACRYPT 2009. LNCS, vol. 5912, pp. 126\u2013143. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1007\/978-3-642-10366-7_8"},{"key":"6_CR25","unstructured":"Albrecht, M., Bard, G.: The M4RI Library. The M4RI Team (2021). http:\/\/m4ri.sagemath.org. Accessed 4 Mar 2021"},{"issue":"1","key":"6_CR26","doi-asserted-by":"publisher","first-page":"122","DOI":"10.1109\/TIT.1969.1054260","volume":"15","author":"JL Massey","year":"1969","unstructured":"Massey, J.L.: Shift-register synthesis and BCH decoding. IEEE Trans. Inf. Theory 15(1), 122\u2013127 (1969). https:\/\/doi.org\/10.1109\/TIT.1969.1054260","journal-title":"IEEE Trans. Inf. Theory"},{"issue":"1","key":"6_CR27","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/0097-3165(73)90031-9","volume":"15","author":"RL McFarland","year":"1973","unstructured":"McFarland, R.L.: A family of difference sets in non-cyclic groups. J. Comb. Theory Ser. A 15(1), 1\u201310 (1973). https:\/\/doi.org\/10.1016\/0097-3165(73)90031-9","journal-title":"J. Comb. Theory Ser. A"},{"key":"6_CR28","unstructured":"MediaTek: Test Vector GEA1\/2 \u2013 MediaTek-HelioX10-Baseband. https:\/\/github.com\/Dude100\/MediaTek-HelioX10-Baseband\/blob\/591772a0d659ef0f7bba1953d18f8fe7c18b11de\/(FDD)MT6795.MOLY.LR9.W1423.MD.LWTG.MP.V24\/driver\/cipher\/include\/gcu_ut.h. Accessed 4 Mar 2021"},{"key":"6_CR29","unstructured":"Nohl, K., Melette, L.: GPRS intercept: Wardriving your country. Chaos Communication Camp (2011). Slides http:\/\/events.ccc.de\/camp\/2011\/Fahrplan\/attachments\/1868_110810.SRLabs-Camp-GRPS_Intercept.pdf. Accessed 8 Oct 2020. Recorded talk https:\/\/media.ccc.de\/v\/cccamp11-4504-gprs_intercept-en#t=1744. Accessed 8 Oct 2020"},{"key":"6_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"617","DOI":"10.1007\/978-3-540-45146-4_36","volume-title":"Advances in Cryptology - CRYPTO 2003","author":"P Oechslin","year":"2003","unstructured":"Oechslin, P.: Making a faster cryptanalytic time-memory trade-off. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 617\u2013630. Springer, Heidelberg (2003). https:\/\/doi.org\/10.1007\/978-3-540-45146-4_36"},{"key":"6_CR31","unstructured":"osmocom: osmocom \u2013 Cellular Network Infrastructure. https:\/\/osmocom.org\/projects\/cellular-infrastructure. Accessed 4 Mar 2021"},{"issue":"3","key":"6_CR32","doi-asserted-by":"publisher","first-page":"300","DOI":"10.1016\/0097-3165(76)90024-8","volume":"20","author":"OS Rothaus","year":"1976","unstructured":"Rothaus, O.S.: On \u201cbent\u201d functions. J. Comb. Theory Ser. A 20(3), 300\u2013305 (1976). https:\/\/doi.org\/10.1016\/0097-3165(76)90024-8","journal-title":"J. Comb. Theory Ser. A"},{"key":"6_CR33","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"378","DOI":"10.1007\/978-3-642-21702-9_22","volume-title":"Fast Software Encryption","author":"Y Sasaki","year":"2011","unstructured":"Sasaki, Y.: Meet-in-the-middle preimage attacks on AES hashing modes and an application to Whirlpool. In: Joux, A. (ed.) FSE 2011. LNCS, vol. 6733, pp. 378\u2013396. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-21702-9_22"},{"key":"6_CR34","unstructured":"Schneier, B.: Applied Cryptography - Protocols, Algorithms, and Source Code in C, 2nd edn. Wiley (1996). http:\/\/www.worldcat.org\/oclc\/32311687"},{"issue":"3","key":"6_CR35","doi-asserted-by":"publisher","first-page":"456","DOI":"10.1137\/0210033","volume":"10","author":"R Schroeppel","year":"1981","unstructured":"Schroeppel, R., Shamir, A.: A T=O(2$${}^{\\text{ n\/2 }}$$), S=O(2$${}^{\\text{ n\/4 }}$$) algorithm for certain np-complete problems. SIAM J. Comput. 10(3), 456\u2013464 (1981). https:\/\/doi.org\/10.1137\/0210033","journal-title":"SIAM J. Comput."},{"issue":"1","key":"6_CR36","doi-asserted-by":"publisher","first-page":"81","DOI":"10.1109\/TC.1985.1676518","volume":"34","author":"T Siegenthaler","year":"1985","unstructured":"Siegenthaler, T.: Decrypting a class of stream ciphers using ciphertext only. IEEE Trans. Comput. 34(1), 81\u201385 (1985). https:\/\/doi.org\/10.1109\/TC.1985.1676518","journal-title":"IEEE Trans. Comput."},{"key":"6_CR37","unstructured":"The Sage Developers: SageMath, the Sage Mathematics Software System (2020). https:\/\/www.sagemath.org"}],"container-title":["Lecture Notes in Computer Science","Advances in Cryptology \u2013 EUROCRYPT 2021"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-77886-6_6","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,6,16]],"date-time":"2024-06-16T00:06:36Z","timestamp":1718496396000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-77886-6_6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021]]},"ISBN":["9783030778859","9783030778866"],"references-count":37,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-77886-6_6","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2021]]},"assertion":[{"value":"16 June 2021","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"EUROCRYPT","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Annual International Conference on the Theory and Applications of Cryptographic Techniques","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Zagreb","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Croatia","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2021","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"17 October 2021","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 October 2021","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"40","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"eurocrypt2021","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/eurocrypt.iacr.org\/2021\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"HotCRP","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"400","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"78","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"20% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"at least 3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"21","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}