DES-X について

Words near each other

・ Des Visages des Figures
・ Des Voeux baronets
・ Des Voeux Island
・ Des Voeux Road
・ Des Vœux
・ Des Wahnsinns fette Beute
・ Des Walker
・ Des Warman
・ Des Warren
・ Des Webb
・ Des White
・ Des Wilson
・ Des'ree
・ Des(1-3)IGF-1
・ Des-gamma carboxyprothrombin
・ DES-X
・ Desa
・ Desa (band)
・ DESA (company)
・ Desa (company)
・ Desa (monarch)
・ Desa Gamtala
・ Desa Muck
・ Desa Munnetram
・ Desa Nisa
・ Desa Petaling
・ Desa Tun Hussein Onn
・ Desa Wisata Sermo
・ Desa, Dolj
・ Desaad

Dictionary Lists

mini英和辞書

翻訳と辞書　辞書検索 [ 開発暫定版 ]

スポンサードリンク

DES-X ：ウィキペディア英語版

DES-X
In cryptography, DES-X (or DESX) is a variant on the DES (Data Encryption Standard) symmetric-key block cipher intended to increase the complexity of a brute force attack using a technique called ''key whitening''.
The original DES algorithm was specified in 1976 with a 56-bit key size: 2⁵⁶ possibilities for the key. There was criticism that an exhaustive search might be within the capabilities of large governments, particularly the United States' National Security Agency (NSA). One scheme to increase the key size of DES without substantially altering the algorithm was DES-X, proposed by Ron Rivest in May 1984.
The algorithm has been included in RSA Security's BSAFE cryptographic library since the late 1980s.
DES-X augments DES by XORing an extra 64 bits of key (K₁) to the plaintext ''before'' applying DES, and then XORing another 64 bits of key (K₂) ''after'' the encryption:

\mbox(M) = K_2 \oplus \mbox_K(M \oplus K_1)

The key size is thereby increased to 56 + (2 × 64) = 184 bits.
However, the effective key size (security) is only increased to 56+64-1-''lb(M)'' = 119 - ''lb(M)'' = ~119 bits, where ''M'' is the number of chosen plaintext/ciphertext pairs the adversary can obtain, and ''lb'' denotes the binary logarithm. Moreover key size drops to 88 bits given 2^32.5 known plaintext and using advanced slide attack. (Because of this, some implementations actually make K₂ a strong one way function of K₁ and K.)
DES-X also increases the strength of DES against differential cryptanalysis and linear cryptanalysis, although the improvement is much smaller than in the case of brute force attacks. It is estimated that differential cryptanalysis would require 2⁶¹ chosen plaintexts (vs. 2⁴⁷ for DES), while linear cryptanalysis would require 2⁶⁰ known plaintexts (vs. 2⁴³ for DES.) Note that with 2⁶⁴ plaintexts (known or chosen being the same in this case), DES (or indeed any other block cipher with a 64 bit block size) is totally broken via the elementary codebook attack.
==See also==

* G-DES
* Meet-in-the-middle attack
* Triple DES

抄文引用元・出典: フリー百科事典『ウィキペディア（Wikipedia）』
■ウィキペディアで「DES-X」の詳細全文を読む

スポンサードリンク

翻訳と辞書 : 翻訳のためのインターネットリソース