{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,1,20]],"date-time":"2024-01-20T12:23:23Z","timestamp":1705753403276},"reference-count":19,"publisher":"Oxford University Press (OUP)","issue":"1","license":[{"start":{"date-parts":[[2022,11,26]],"date-time":"2022-11-26T00:00:00Z","timestamp":1669420800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/academic.oup.com\/journals\/pages\/open_access\/funder_policies\/chorus\/standard_publication_model"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024,1,17]]},"abstract":"<jats:title>Abstract<\/jats:title>\n               <jats:p>Small-state stream ciphers (SSCs) idea is based on using key bits not only in the initialization but also continuously in the keystream generation phase. A time-memory-data tradeoff (TMDTO) distinguishing attack was successfully applied against all SSCs in 2017 by Hamann et al. They suggested using not only key bits but also initial value (IV) bits continuously in the keystream generation phase to strengthen SSCs against TMDTO attacks. Then, Hamann and Krause proposed a construction based on using only IV bits continuously in the packet mode. They suggested an instantiation of an SSC and claimed that it is resistant to TMDTO attacks. We point out that accessing IV bits imposes an overhead on cryptosystems that might be unacceptable in some applications. More importantly, we show that the proposed SSC remains vulnerable to TMDTO attacks 1. To resolve this security threat, the current paper proposes constructions based on storing key or IV bits that are the first to provide full security against TMDTO attacks. Five constructions are proposed for different applications by considering efficiency. Designers can obtain each construction\u2019s minimum volatile state length according to the desirable keystream, key and IV lengths.<\/jats:p>","DOI":"10.1093\/comjnl\/bxac165","type":"journal-article","created":{"date-parts":[[2022,11,28]],"date-time":"2022-11-28T15:58:10Z","timestamp":1669651090000},"page":"169-178","source":"Crossref","is-referenced-by-count":0,"title":["An Attack on a Proposed Construction of Small-State Stream Ciphers and Proposals for New Constructions"],"prefix":"10.1093","volume":"67","author":[{"given":"Vahid","family":"Amin-Ghafari","sequence":"first","affiliation":[{"name":"China University of Mining and Technology School of Information and Control Engineering, , Jiangsu 221116, P. R . China"},{"name":"K. N. Toosi University of Technology Electrical and Computer Engineering School, , Tehran 1631714191 , Iran"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mahmoud","family":"Ahmadian Attari","sequence":"additional","affiliation":[{"name":"K. N. Toosi University of Technology Electrical and Computer Engineering School, , Tehran 1631714191 , Iran"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"286","published-online":{"date-parts":[[2022,11,26]]},"reference":[{"key":"2024012011483523700_ref4","doi-asserted-by":"crossref","first-page":"855","DOI":"10.1109\/COMST.2017.2652320","article-title":"Low power wide area networks: an overview","volume":"19","author":"Raza","year":"2017","journal-title":"IEEE Commun. Surveys Tutorials"},{"key":"2024012011483523700_ref5","doi-asserted-by":"crossref","first-page":"1947","DOI":"10.1007\/s11277-020-07134-3","article-title":"Lightweight cryptography: a solution to secure IoT","volume":"112","author":"Dhanda","year":"2020","journal-title":"Wirel. Pers. Commun."},{"key":"2024012011483523700_ref6","doi-asserted-by":"crossref","first-page":"45","DOI":"10.29304\/jqcm.2019.11.2.571","article-title":"Internet of things security using new chaotic system and lightweight AES","volume":"11","author":"Naif","year":"2019","journal-title":"J. Al-Qadisiyah Comput. Sci. Math."},{"key":"2024012011483523700_ref7","doi-asserted-by":"crossref","first-page":"325","DOI":"10.1109\/CSASE51777.2022.9759828","volume-title":"2022 International Conference on Computer Science and Software Engineering (CSASE)","author":"Salman","year":"2022"},{"key":"2024012011483523700_ref8","first-page":"3287","article-title":"Combined Chebyshev and logistic maps to generate pseudorandom number generator for internet of things","volume":"12","author":"Jassim","year":"2022","journal-title":"Int. J. Electr. Comput. Eng."},{"key":"2024012011483523700_ref9","doi-asserted-by":"crossref","first-page":"451","DOI":"10.1007\/978-3-662-48116-5_22","volume-title":"International Workshop on Fast Software Encryption","author":"Armknecht","year":"2015"},{"key":"2024012011483523700_ref10","doi-asserted-by":"crossref","first-page":"180","DOI":"10.3390\/e20030180","article-title":"Fruit-80: a secure ultra-lightweight stream cipher for constrained environments","volume":"20","author":"Ghafari","year":"2018","journal-title":"Entropy"},{"key":"2024012011483523700_ref11","author":"Ghafari","year":"2016"},{"key":"2024012011483523700_ref12","first-page":"1","volume-title":"International Conference on the Theory and Application of Cryptology and Information Security","author":"Biryukov","year":"2000"},{"key":"2024012011483523700_ref13","first-page":"52","article-title":"On ciphers that continuously access the non-volatile key","volume":"2016","author":"Mikhalev","year":"2016","journal-title":"IACR Trans. Symmetric Cryptol."},{"key":"2024012011483523700_ref14","author":"Ghafari","year":"2017"},{"key":"2024012011483523700_ref15","doi-asserted-by":"crossref","first-page":"803","DOI":"10.1007\/s12095-017-0261-6","article-title":"Design and analysis of small-state grain-like stream ciphers","volume":"10","author":"Hamann","year":"2018","journal-title":"Cryptogr. Commun."},{"key":"2024012011483523700_ref2","author":"Hamann","year":"2019"},{"key":"2024012011483523700_ref16","author":"Hamann","year":"2017"},{"key":"2024012011483523700_ref17","first-page":"353","volume-title":"International Conference on the Theory and Application of Cryptology and Information Security","author":"Hong","year":"2005"},{"key":"2024012011483523700_ref18","doi-asserted-by":"crossref","first-page":"959","DOI":"10.1007\/s12095-018-0294-5","article-title":"On stream ciphers with provable beyond-the-birthday-bound security against time-memory-data tradeoff attacks","volume":"10","author":"Hamann","year":"2018","journal-title":"Cryptogr. Commun."},{"key":"2024012011483523700_ref19","doi-asserted-by":"crossref","first-page":"45","DOI":"10.46586\/tosc.v2017.i1.45-79","article-title":"LIZARD-A lightweight stream cipher for power-constrained devices","volume":"2017","author":"Hamann","year":"2017","journal-title":"IACR Trans. Symmetric Cryptol."},{"key":"2024012011483523700_ref1","first-page":"335","volume-title":"International Conference on Selected Areas in Cryptography","author":"Hamann","year":"2019"},{"key":"2024012011483523700_ref3","author":"Ghafari","year":"2019"}],"container-title":["The Computer Journal"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/academic.oup.com\/comjnl\/article-pdf\/67\/1\/169\/56167465\/bxac165.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/academic.oup.com\/comjnl\/article-pdf\/67\/1\/169\/56167465\/bxac165.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,20]],"date-time":"2024-01-20T11:48:48Z","timestamp":1705751328000},"score":1,"resource":{"primary":{"URL":"https:\/\/academic.oup.com\/comjnl\/article\/67\/1\/169\/6847608"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,11,26]]},"references-count":19,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2022,11,26]]},"published-print":{"date-parts":[[2024,1,17]]}},"URL":"https:\/\/doi.org\/10.1093\/comjnl\/bxac165","relation":{},"ISSN":["0010-4620","1460-2067"],"issn-type":[{"value":"0010-4620","type":"print"},{"value":"1460-2067","type":"electronic"}],"subject":[],"published-other":{"date-parts":[[2024,1]]},"published":{"date-parts":[[2022,11,26]]}}}