Algebraic attacks on clock-controlled stream ciphers

Stream ciphers are encryption algorithms used for ensuring the privacy of digital telecommunications. They have been widely used for encrypting military communications, satellite communications, pay TV encryption and for voice encryption of both fixed lined and wireless networks. The current multi year European project eSTREAM, which aims to select stream ciphers suitable for widespread adoptation, reflects the importance of this area of research. Stream ciphers consist of a keystream generator and an output function. Keystream generators produce a sequence that appears to be random, which is combined with the plaintext message using the output function. Most commonly, the output function is binary addition modulo two. Cryptanalysis of these ciphers focuses largely on analysis of the keystream generators and of relationships between the generator and the keystream it produces. Linear feedback shift registers are widely used components in building keystream generators, as the sequences they produce are well understood. Many types of attack have been proposed for breaking various LFSR based stream ciphers. A recent attack type is known as an algebraic attack. Algebraic attacks transform the problem of recovering the key into a problem of solving multivariate system of equations, which eventually recover the internal state bits or the key bits. This type of attack has been shown to be effective on a number of regularly clocked LFSR based stream ciphers. In this thesis, algebraic attacks are extended to a number of well known stream ciphers where at least one LFSR in the system is irregularly clocked. Applying algebriac attacks to these ciphers has only been discussed previously in the open literature for LILI-128. In this thesis, algebraic attacks are first applied to keystream generators using stop-and go clocking. Four ciphers belonging to this group are investigated: the Beth-Piper stop-and-go generator, the alternating step generator, the Gollmann cascade generator and the eSTREAM candidate: the Pomaranch cipher. It is shown that algebraic attacks are very effective on the first three of these ciphers. Although no effective algebraic attack was found for Pomaranch, the algebraic analysis lead to some interesting findings including weaknesses that may be exploited in future attacks. Algebraic attacks are then applied to keystream generators using (p; q) clocking. Two well known examples of such ciphers, the step1/step2 generator and the self decimated generator are investigated. Algebraic attacks are shown to be very powerful attack in recovering the internal state of these generators. A more complex clocking mechanism than either stop-and-go or the (p; q) clocking keystream generators is known as mutual clock control. In mutual clock control generators, the LFSRs control the clocking of each other. Four well known stream ciphers belonging to this group are investigated with respect to algebraic attacks: the Bilateral-stop-and-go generator, A5/1 stream cipher, Alpha 1 stream cipher, and the more recent eSTREAM proposal, the MICKEY stream ciphers. Some theoretical results with regards to the complexity of algebraic attacks on these ciphers are presented. The algebraic analysis of these ciphers showed that generally, it is hard to generate the system of equations required for an algebraic attack on these ciphers. As the algebraic attack could not be applied directly on these ciphers, a different approach was used, namely guessing some bits of the internal state, in order to reduce the degree of the equations. Finally, an algebraic attack on Alpha 1 that requires only 128 bits of keystream to recover the 128 internal state bits is presented. An essential process associated with stream cipher proposals is key initialization. Many recently proposed stream ciphers use an algorithm to initialize the large internal state with a smaller key and possibly publicly known initialization vectors. The effect of key initialization on the performance of algebraic attacks is also investigated in this thesis. The relationships between the two have not been investigated before in the open literature. The investigation is conducted on Trivium and Grain-128, two eSTREAM ciphers. It is shown that the key initialization process has an effect on the success of algebraic attacks, unlike other conventional attacks. In particular, the key initialization process allows an attacker to firstly generate a small number of equations of low degree and then perform an algebraic attack using multiple keystreams. The effect of the number of iterations performed during key initialization is investigated. It is shown that both the number of iterations and the maximum number of initialization vectors to be used with one key should be carefully chosen. Some experimental results on Trivium and Grain-128 are then presented. Finally, the security with respect to algebraic attacks of the well known LILI family of stream ciphers, including the unbroken LILI-II, is investigated. These are irregularly clock- controlled nonlinear filtered generators. While the structure is defined for the LILI family, a particular paramater choice defines a specific instance. Two well known such instances are LILI-128 and LILI-II. The security of these and other instances is investigated to identify which instances are vulnerable to algebraic attacks. The feasibility of recovering the key bits using algebraic attacks is then investigated for both LILI- 128 and LILI-II. Algebraic attacks which recover the internal state with less effort than exhaustive key search are possible for LILI-128 but not for LILI-II. Given the internal state at some point in time, the feasibility of recovering the key bits is also investigated, showing that the parameters used in the key initialization process, if poorly chosen, can lead to a key recovery using algebraic attacks.

Introduction: Resistance, Recovery and Revitalisation

Aboriginal and Torres Strait Islander perspectives on contemporary cultural issues are presented in this collection of critical essays by indigenous Australians. From museums and anthropology to land rights and feminism, a range of topics are covered that touch on both indigenous and mainstream Australian history. Discussions of identity politics, the concept of Aboriginality, and aesthetic representations of indigenous people are rich with insight about the evolution of indigenous culture, with its shift from marginalization to cultural prominence in modern scholarship.

Maximum recovery after knee replacement - the MARKER study rationale and protocol

Background There is little scientific evidence to support the usual practice of providing outpatient rehabilitation to patients undergoing total knee replacement surgery (TKR) immediately after discharge from the orthopaedic ward. It is hypothesised that the lack of clinical benefit is due to the low exercise intensity tolerated at this time, with patients still recovering from the effects of major orthopaedic surgery. The aim of the proposed clinical trial is to investigate the clinical and cost effectiveness of a novel rehabilitation strategy, consisting of an initial home exercise programme followed, approximately six weeks later, by higher intensity outpatient exercise classes. Methods/Design In this multicentre randomised controlled trial, 600 patients undergoing primary TKR will be recruited at the orthopaedic pre-admission clinic of 10 large public and private hospitals in Australia. There will be no change to the medical or rehabilitative care usually provided while the participant is admitted to the orthopaedic ward. After TKR, but prior to discharge from the orthopaedic ward, participants will be randomised to either the novel rehabilitation strategy or usual rehabilitative care as provided by the hospital or recommended by the orthopaedic surgeon. Outcomes assessments will be conducted at baseline (pre-admission clinic) and at 6 weeks, 6 months and 12 months following randomisation. The primary outcomes will be self-reported knee pain and physical function. Secondary outcomes include quality of life and objective measures of physical performance. Health economic data (health sector and community service utilisation, loss of productivity) will be recorded prospectively by participants in a patient diary. This patient cohort will also be followed-up annually for five years for knee pain, physical function and the need or actual incidence of further joint replacement surgery. Discussion The results of this pragmatic clinical trial can be directly implemented into clinical practice. If beneficial, the novel rehabilitation strategy of utilising outpatient exercise classes during a later rehabilitation phase would provide a feasible and potentially cost-effective intervention to optimise the physical well-being of the large number of people undergoing TKR.

Learning from episodes of degradation and recovery in variable Australian rangelands

Land-change science emphasizes the intimate linkages between the human and environmental components of land management systems. Recent theoretical developments in drylands identify a small set of key principles that can guide the understanding of these linkages. Using these principles, a detailed study of seven major degradation episodes over the past century in Australian grazed rangelands was reanalyzed to show a common set of events: (i) good climatic and economic conditions for a period, leading to local and regional social responses of increasing stocking rates, setting the preconditions for rapid environmental collapse, followed by (ii) a major drought coupled with a fall in the market making destocking financially unattractive, further exacerbating the pressure on the environment; then (iii) permanent or temporary declines in grazing productivity, depending on follow-up seasons coupled again with market and social conditions. The analysis supports recent theoretical developments but shows that the establishment of environmental knowledge that is strictly local may be insufficient on its own for sustainable management. Learning systems based in a wider community are needed that combine local knowledge, formal research, and institutional support. It also illustrates how natural variability in the state of both ecological and social systems can interact to precipitate nonequilibrial change in each other, so that planning cannot be based only on average conditions. Indeed, it is this variability in both environment and social subsystems that hinders the local learning required to prevent collapse.

Subjective and Objective Indicators of Recovery in Severe Mental Illness: a Cross-Sectional Study

Background: This study aimed to determine whether subjective dimensions of recovery such as empowerment are associated with self-report of more objective indicators such as level of participation in the community and income from employment. A secondary aim was to investigate the extent to which diagnosis or other consumer characteristics mediated any relationship between these variables. Methods: The Community Integration Measure, the Empowerment Scale, the Recovery Assessment Scale, and the Camberwell Assessment of Needs Short Appraisal Schedule were administered to a convenience sample of 161 consumers with severe mental illness. Results: The majority of participants had a primary diagnosis of schizophreniform, anxiety/depression or bipolar affective disorder. The Empowerment Scale was quite strongly correlated with the Recovery Assessment Scale and the Community Integration Measure. Participants with a diagnosis of bipolar affective disorder had signifi cantly higher recovery and empowerment scores than participants with schizophrenia or depression. Both empowerment and recovery scores were significantly higher for people engaged in paid employment than for those receiving social security benefits. Conclusions: The measurement of subjective dimensions of recovery such as empowerment has validity in evaluation of global recovery for people with severe mental illness. A diagnosis of bipolar disorder is associated with higher scores on subjective and objective indicators of recovery.

Recovery-based practice: do we know what we mean or mean what we know?

The concept of recovery is now widely promoted as the guiding principle for the provision of mental health services in Australia and overseas. While there is increasing pressure on service providers to ensure that services are recovery oriented, the way in which recovery-based practice is operationalized at the coalface presents a number of challenges. These are discussed in the context of five key questions that address (i) the appropriateness of recovery as a focus for service delivery, (ii) the distinction between recovery as a process and an outcome, (iii) the assessment of recovery initiatives, (iv) the alignment of recovery with current service delivery models, and (v) the risks associated with recovery-based practice. It is argued that these questions provide a framework for a debate that must extend beyond patients and providers of mental health services to the broader public, whose attitudes will ultimately determine the possibilities and limits of recovery-oriented practice.

The association between leisure motivation and recovery: A pilot study

Background and aims: Recovery from mental illness may be facilitated by participation in activities that provide meaning and purpose in the lives of consumers. Leisure participation can be a major source of enjoyment as well as mental and physical well-being. Methods and results: This study examined the association between consumers’ motivation to engage in leisure and their self-reported perception of recovery in a sample of 44 Clubhouse members. The Leisure Motivation Scale and the Recovery Assessment Scale were used to measure the association between leisure motivation and recovery. The results indicated a statistically significant association between leisure motivation and recovery. Conclusion: These findings have implications for service delivery within mental health settings, as occupational therapists may be able to design leisure-based programs more effectively if they can understand the needs and motives for participation. More emphasis should be placed on supporting consumers to re-integrate and be socially included within the community through leisure-based initiatives.

From critique to cultural recovery: critical futures studies and casual layered analysis

Critical futures studies is not about the careers of a few scholars, rather it is about projects that transcend the narrow boundaries of the self. This biographical monograph examines the life and work of Richard Slaughter and Sohail Inayatullah.