Home > Khufu and Khafre
In cryptography, Khufu and Khafre are two block ciphers designed by Ralph Merkle in 1989 while working at Xerox's Pan Alto Research Center. Along with Snefru, a cryptographic hash function, the ciphers were named after the Egyptian Pharaohs Khufu, Khafre and Sneferu.Under a voluntary scheme, Xerox submitted Khufu and Khafre to the National Security Agency (NSA) prior to publication. NSA requested that Xerox not publish the algorithms, citing concerns about national security. Xerox, a large government contractor, complied. However, a reviewer of the paper passed a copy to John Gilmore, who made it available via the sci.crypt newsgroupA newsgroup is a repository, usually within the Usenet system, for messages posted from many users at different locations. The term is somewhat confusing, because it is usually a discussion group. Newsgroups are technically distinct from, but functionally [1]; [2]. It would appear this was against Merkle's wishes [3]. The scheme was subsequently published at the 1990Events January January 3 Former leader of Panama Manuel Noriega surrenders to American forces. January 7 The Leaning Tower of Pisa is closed to the public due to safety concerns. January 9 Lt Gen Bazilio Olara Okello The man who led the coup aginst Dr Apo CRYPTOCRYPTO is a common abbreviation for the Annual International Cryptology Conference one of the largest in cryptography, organised by the International Association for Cryptologic Research (IACR). External links CRYPTO is also used to designate key material conference (Merkle, 1990).
Khufu and Khafre are patented by Xerox; US patent #5,003,597, issued on 26th March, 19911991 like 2002, is a palindromic year. It also has the same calendar as 2002, including Easter on March 31. It is a common year starting on Tuesday. Events January January 2 Sharon Pratt Dixon is sworn in as mayor of Washington, DC becoming the first blac.
1 Khufu
Khufu is a 64-bit blockIn modern cryptography, symmetric key ciphers are generally divided into stream ciphers and block ciphers. Block ciphers operate on a fixed length string of bits. The length of this bit string is the block size . Both the input ( plaintext) and output ( c cipher which, unusually, uses keyA key is a piece of information that controls the operation of a cryptography algorithm. In encryption, a key specifies the particular transformation of plaintext into ciphertext, or vice versa during decryption. Keys are also used in other cryptographics of sizeIn cryptography, the key size (alternatively key length is a measure of the number of possible keys which can be used in a cipher. Because modern cryptography uses binary keys, the length is usually specified in bits. The length of a key is critical in de 512 bits; block ciphers typically have much smaller keys, rarely exceeding 128 bits. Most of the key material is used to construct the cipher's S-boxes. Because the key-setup time is quite time consuming, Khufu is not well suited to situations in which many small messages are handled. It is better suited to bulk encryption of large amounts of data.
Khufu is a Feistel cipher with 16 rounds by default (other multiples of eight between 8 and 64 are allowed). Each set of eight rounds is termed an octet; a different S-box is used in each octet. In a round, the least significant byte of half of the block is passed into the 8×32-bit S-box. The S-box output is then combined (using XOR) with the other 32-bit half. The left half is rotated to bring a new byte into position, and the halves are swapped. At the start and end of the algorithm, extra key material is XORed with the block ( key whitening ). Other than this, all the key is contained in the S-boxes.
There is a differential attack on 16 rounds of Khufu which can recover the secret key. It requires 243 chosen plaintexts and has a 243 time complexity (Gilbert and Chauvaud, 1994). 232 plaintexts and complexity are required to merely distinguish the cipher from random. A boomerang attack (Wagner, 1999) can be used in an adaptive chosen plaintext / chosen ciphertext scenario with 218 queries and a similar time complexity. Khufu is also susceptible to an impossible differential attack, which can break up to 18 rounds of the cipher (Biham et al., 1999).
Schneier and Kelsey (1996) categorise Khafre and Khufu as "even incomplete heterogenous target-heavy Unbalanced Feistel Networks".
