Security evaluation of RC4 using big data analytics

2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS) Pub Date : 2016-08-01 DOI:10.1109/ICSESS.2016.7883075

Cong Liu, Yong Cai, Taihong Wang

{"title":"Security evaluation of RC4 using big data analytics","authors":"Cong Liu, Yong Cai, Taihong Wang","doi":"10.1109/ICSESS.2016.7883075","DOIUrl":null,"url":null,"abstract":"Transport Layer Security (TLS) protocol aims to provide confidentiality and integrity of data across untrusted networks. TLS supports several encryption options, including the RC4 stream cipher. Recent years, there is a growing interest for the crypto researchers do cryptanalysis on RC4 algorithm, they provide a comprehensive view on the RC4 cryptanalysis. This paper presents a new method based on big data processing technique to analyze the security of RC4. We drive the powerful cluster to execute the analyzing program, which invokes the RC4 algorithm for producing the stream cipher derived from the inputted random key generated by locality-insensitive hash function with actually predictable number. With the manufactured stream cipher, the program inspects the statistical feature about the byte value distribution at each position and such feature among byte pairs. During the implementation, we parallelized our program such that it exploits the computational resources of the distributed computing system by using our own modified Mapreduce structure, then we can get the distribution derived from a huge amount of key.","PeriodicalId":175933,"journal":{"name":"2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)","volume":"93 39 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSESS.2016.7883075","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Transport Layer Security (TLS) protocol aims to provide confidentiality and integrity of data across untrusted networks. TLS supports several encryption options, including the RC4 stream cipher. Recent years, there is a growing interest for the crypto researchers do cryptanalysis on RC4 algorithm, they provide a comprehensive view on the RC4 cryptanalysis. This paper presents a new method based on big data processing technique to analyze the security of RC4. We drive the powerful cluster to execute the analyzing program, which invokes the RC4 algorithm for producing the stream cipher derived from the inputted random key generated by locality-insensitive hash function with actually predictable number. With the manufactured stream cipher, the program inspects the statistical feature about the byte value distribution at each position and such feature among byte pairs. During the implementation, we parallelized our program such that it exploits the computational resources of the distributed computing system by using our own modified Mapreduce structure, then we can get the distribution derived from a huge amount of key.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

基于大数据分析的RC4安全评估

传输层安全(TLS)协议旨在跨不可信网络提供数据的机密性和完整性。TLS支持多种加密选项，包括RC4流密码。近年来，密码学研究人员对RC4算法的密码分析越来越感兴趣，他们对RC4密码分析提供了一个全面的观点。本文提出了一种基于大数据处理技术的RC4安全分析新方法。我们驱动强大的集群来执行分析程序，该程序调用RC4算法来生成由输入的随机密钥派生的流密码，该密钥由位置不敏感的散列函数生成，具有实际可预测的数字。程序利用编好的流密码，检查每个位置上字节值分布的统计特征以及字节对之间的统计特征。在实现过程中，我们对程序进行并行化处理，利用我们自己修改的Mapreduce结构，充分利用分布式计算系统的计算资源，从而得到由大量的键导出的分布。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2016 7th IEEE International Conference on Software Engineering and Service Science (ICSESS)

自引率

0.00%

发文量