Row, Row, Row Your Boat: How to Not Find Weak Keys in Pilsung
Files
(Published version)
Date
2023
Authors
Chuengsatiansup, C.
Ronen, E.
Rose, G.G.
Yarom, Y.
Editors
Advisors
Journal Title
Journal ISSN
Volume Title
Type:
Journal article
Citation
The Computer Journal, 2023; 66(6):1335-1341
Statement of Responsibility
Chitchanok Chuengsatiansup, Eyal Ronen, Gregory G. Rose, and Yuval Yarom
Conference Name
Abstract
The Pilsung cipher is part of the North Korean Red Star operating system, which was leaked to the West in 2014. Initial analysis by Kryptos Logic reported a possibility of a class of weak keys due to the use of pseudo-random diffusion. Following this lead, we analyzed the cipher and identified a small class of such weak keys. We developed techniques for searching for a key that belongs to the class. After spending thousands of CPU hours, we found a supposedly weak key for a slightly weaker version of Pilsung, but the key did not behave as we expected. On further investigation we found out a crucial misunderstanding in a critical part of the cipher and that no such class of weak keys exists in Pilsung. Thus, this paper makes two main contributions to the art of cryptanalysis. First, it identifies and shows how to investigate a potential weakness in randomizing diffusion, which although does not exist in Pilsung, may affect future designs. Second, it highlights the need for early verification of results in order to identify errors before expending significant resources.
School/Discipline
Dissertation Note
Provenance
Description
Advance Access publication on 19 July 2022
Access Status
Rights
© The Author(s) 2022. Published by Oxford University Press on behalf of The British Computer Society. This is an Open Access article distributed under the terms of the Creative Commons Attribution-NonCommercial License (http:// creativecommons.org/licenses/by-nc/4.0/), which permits non-commercial re-use, distribution, and reproduction in any medium, provided the original work is properly cited.