Search:

Blubb.org

random thoughts...

RC4 Stream Cipher alone secure enough?

February 10th, 2009 Recently I had a discussion with a good friend about RC4 and if it is still to be considered "secure" ?

If you search around you will find that the Algorithm is still used very widely but often only in combination with other techniques like RC4-HMAC (hello! Microsoft), RC4-MD5 etc. This document for instance from RSA Labs for instance is posted in the ``History'' section of their Homepage. This has a good reason.

The OpenSSH guys already kicked this Cipher out during development of early versions when they realized that SSH-1 used this Cipher wrong. This Cipher was also used in the e.g. WEP Protocol and was a disaster. (read: real-time decryption)

Now you will scream foul, we already know all that. For that purpose we have RC4-Drop ! It avoids all those bad, weak, keys and works fine. Cryptographically secure.

Admitted, you create a more secure version of this flawed Algorithm. I mean if you take into account all recent papers on Cryptanalysis and monkey-patch your Algorithm to drop at least 3^H256 byte, figure out the weak keys from a generated subset (ref, many more papers until 2008) and then also make sure that you don't transfer too much data with this key, then you are probably on the safe side.

Let me ask this curious question, why do you want to use this Cipher? You will probably tell me you need alot of speed in your application and you don't care that projects like eStream and alike have been created (anno 2004) to address these problems? See Rabbit. This thing is really neat!

On the other hand if you really go with standard these days you will probably pick AES (128-bit) in Stream mode. I'm not a crypto expert so please be kind with your comments.

Other references:

• Paper on a good RC4 Attack (".. It is still successful if the first 256 bytes of the RC4 pseudo random sequence are not observable.")
• Interesting talk about Stream Ciphers during the 25C3
• New Stream Cipher HC-256
• CryptoBenchmark
• RC4 Description and brief analysis

Twitter feed

Categories feed

• Home (5)

Comments feed

• Bjoern on New technology makes us unhappy and stupid?
• Bjoern on RC4 Stream Cipher alone secure enough?
• have you on Remote VNC Connections - Make it easy for users
• Bjoern on Remote VNC Connections - Make it easy for users
• Bjoern on Autojump, or a "cd" that remembers.
• Bjoern on Autojump, or a "cd" that remembers.
• Martin Hauser on Autojump, or a "cd" that remembers.
• Bjoern on RC4 Stream Cipher alone secure enough?
• Bjoern on 3D iPhone Development - What do you need?
• Martin Hauser on A true WTF Microsoft style
• Martin Hauser on Linux Kernel exploit for 2.6.17 up to 2.6.24.1
• Martin Hauser on The right Jargon
• Martin Hauser on Internet Explorer 8 passes the ACID 2 test
• Martin Hauser on Case study: American Prisons
• Martin Hauser on Case study: Yersinia pestis

Tags

• bugs (1)
• business (1)
• Case Studies (0)
• China (1)
• commandline (1)
• Crazy (8)
• Crime (1)
• cryptanalsys (1)
• debugging (1)
• digg (1)
• digital age (0)
• distractions (1)
• erlang (1)
• Exploits (1)
• ffi (1)
• Food (3)
• Funny (6)
• Geek (1)
• git (1)
• graffiti (1)
• hacks (1)
• handhelds (1)
• iphone (1)
• ipod (1)
• Japan (6)
• Kernel (1)
• kindness (1)
• Linux (9)
• mcdonalds (1)
• Medicin (1)
• Memory Management (0)
• mephisto (1)
• Microsoft (2)
• miscellaneous (4)
• Multi-Drug Resistancy (0)
• Net (6)
• Physics (1)
• Police (1)
• presentations (1)
• productivity (1)
• programming (1)
• rss (1)
• Ruby (1)
• scaling (1)
• Science (1)
• screen (1)
• Scripts (1)
• security (1)
• Software (13)
• Statistics (2)
• stock market (0)
• Videos (3)
• vnc (2)
• web (2)
• Web 2.0 (2)
• weird (1)

Archives

• November 2009 (1)
• October 2009 (1)
• June 2009 (1)
• April 2009 (2)
• February 2009 (5)
• January 2009 (5)
• December 2008 (2)
• February 2008 (3)
• January 2008 (2)
• December 2007 (5)
• November 2007 (4)
• August 2007 (1)
• June 2007 (2)
• March 2007 (1)

Advertisement

© 2007-2009 Björn Rennhak | Credits