Everything about Sober totally explained
In
cryptography,
SOBER is a family of
stream ciphers initially designed by
Greg Rose
of
QUALCOMM Australia starting in 1997. The name is a contrived acronym for
Seventeen
Octet
Byte
Enabled
Register. Initially the cipher was intended as a replacement for broken ciphers in cellular telephony. The ciphers evolved, and other developers (primarily
Phillip Hawkes) joined the project.
SOBER was the first cipher, with a 17-byte
Linear Feedback Shift Register, a form of
decimation called
stuttering, and a nonlinear output filter function. The particular configuration of the shift register turned out to be vulnerable to "guess and determine" attacks.
SOBER-2 changed the position of the feedback and output taps to resist the above attacks.
S16 was an expansion to 16-bit words rather than bytes, with an expected increase of security.
Adaptions for and since NESSIE
For the
NESSIE call for new cryptographic primitives, three new versions called the
t-class were developed;
SOBER-t8 was virtually identical to SOBER-2 but didn't have sufficient design strength for NESSIE submission;
SOBER-t16 and
SOBER-t32 were submitted.
t32 was a further expansion to 32-bit words, while both ciphers had a more efficient method of computing the linear feedback.
Subsequent to NESSIE,
SOBER-128 was designed to take into account what had been learned. The stuttering was dropped because it added too little strength for the overhead, and the nonlinear output function was strengthened. As a stream cipher, SOBER-128 remains unbroken. The message authentication capability that was added at the same time was trivially broken.
Mundja is an integrated message authentication feature based on
SHA-256 that was designed to be added to stream ciphers such as SOBER-128.
Turing, named after
Alan Turing, shares the LFSR design of SOBER-128, but has a block-cipher-like output filter function with key-dependent S-boxes, and remains unbroken subject to a minor usage constraint.
NLS, for Non Linear SOBER, was submitted to the European
EStream project. It uses nonlinearity for the shift register, and simplifies the output filter for increased performance, using Mundja for message authentication.
SSS, for Self-Synchronizing SOBER, was also submitted but has very little relationship to the other SOBER ciphers, and was quickly broken.
Shannon, named after
Claude Shannon, shortens the register to 16 32-bit words, and has completely new feedback and output filter tap positions. It incorporates a new and more efficient message authentication mechanism.
Boole, named after
George Boole, is a family of combined
hash functions and
stream ciphers being developed for submission to the
NIST call for development of an advanced hash standard.
Further Information
Get more info on 'Sober'.
|
External Link Exchanges
Do you know how hard it is to get a link from a large encyclopaedia? Well we're different and will prove it. To get a link from us just add the following HTML to your site on a relevant page:
<a href="http://sober.totallyexplained.com">SOBER Totally Explained</a>
Then simply click through this link from your web page. Our crawlers will verify your link, extract the title of your web page and instantly add a link back to it. If you like you can remove the words Totally Explained and embed the link in article text.
As long as your link remains in place, we'll keep our link to you right here. Please play fair - our crawlers are watching. Your site must be closely related to this one's topic. Any kind of spamming, dubious practises or removing the link will result in your link from us being dropped and, potentially, your whole site being banned. |
