A different algebraic analysis of the ZUC stream cipher

Existing algebraic analyses of the ZUC cipher indicate that the cipher should be secure against algebraic attacks. In this paper, we present an alternative algebraic analysis method for the ZUC stream cipher, where a combiner is used to represent the nonlinear function and to derive equations representing the cipher. Using this approach, the initial states of ZUC can be recovered from 2^97 observed words of keystream, with a complexity of 2^282 operations. This method is more successful when applied to a modified version of ZUC, where the number of output words per clock is increased. If the cipher outputs 120 bits of keystream per clock, the attack can succeed with 219 observed keystream bits and 2^47 operations. Therefore, the security of ZUC against algebraic attack could be significantly reduced if its throughput was to be increased for efficiency.

Analysis of indirect message injection for MAC generation using stream ciphers

This paper presents a model for generating a MAC tag with a stream cipher using the input message indirectly. Several recent proposals represent instances of this model with slightly different options. We investigate the security of this model for different options, and identify cases which permit forgery attacks. Based on this, we present a new forgery attack on version 1.4 of 128-EIA3. Design recommendations to enhance the security of proposals following this general model are given.

Distinguishing attack on SOBER-128 with linear masking

We present a distinguishing attack against SOBER-128 with linear masking. We found a linear approximation which has a bias of 2^− − 8.8 for the non-linear filter. The attack applies the observation made by Ekdahl and Johansson that there is a sequence of clocks for which the linear combination of some states vanishes. This linear dependency allows that the linear masking method can be applied. We also show that the bias of the distinguisher can be improved (or estimated more precisely) by considering quadratic terms of the approximation. The probability bias of the quadratic approximation used in the distinguisher is estimated to be equal to O(2^− − 51.8), so that we claim that SOBER-128 is distinguishable from truly random cipher by observing O(2^103.6) keystream words.

Cryptanalysis of Tav-128 Hash Function

Many RFID protocols use cryptographic hash functions for their security. The resource constrained nature of RFID systems forces the use of light weight cryptographic algorithms. Tav-128 is one such 128-bit light weight hash function proposed by Peris-Lopez et al. for a low-cost RFID tag authentication protocol. Apart from some statistical tests for randomness by the designers themselves, Tav-128 has not undergone any other thorough security analysis. Based on these tests, the designers claimed that Tav-128 does not posses any trivial weaknesses. In this article, we carry out the first third party security analysis of Tav-128 and show that this hash function is neither collision resistant nor second preimage resistant. Firstly, we show a practical collision attack on Tav-128 having a complexity of 237 calls to the compression function and produce message pairs of arbitrary length which produce the same hash value under this hash function. We then show a second preimage attack on Tav-128 which succeeds with a complexity of 262 calls to the compression function. Finally, we study the constituent functions of Tav-128 and show that the concatenation of nonlinear functions A and B produces a 64-bit permutation from 32-bit messages. This could be a useful light weight primitive for future RFID protocols.

Low probability differentials and the cryptanalysis of full-round CLEFIA-128

So far, low probability differentials for the key schedule of block ciphers have been used as a straightforward proof of security against related-key differential analysis. To achieve resistance, it is believed that for cipher with k-bit key it suffices the upper bound on the probability to be 2− k . Surprisingly, we show that this reasonable assumption is incorrect, and the probability should be (much) lower than 2− k . Our counter example is a related-key differential analysis of the well established block cipher CLEFIA-128. We show that although the key schedule of CLEFIA-128 prevents differentials with a probability higher than 2− 128, the linear part of the key schedule that produces the round keys, and the Feistel structure of the cipher, allow to exploit particularly chosen differentials with a probability as low as 2− 128. CLEFIA-128 has 214 such differentials, which translate to 214 pairs of weak keys. The probability of each differential is too low, but the weak keys have a special structure which allows with a divide-and-conquer approach to gain an advantage of 27 over generic analysis. We exploit the advantage and give a membership test for the weak-key class and provide analysis of the hashing modes. The proposed analysis has been tested with computer experiments on small-scale variants of CLEFIA-128. Our results do not threaten the practical use of CLEFIA.

Fungal Planet description sheets: 128-153

Novel species of microfungi described in the present study include the following from Australia: Catenulostroma corymbiae from Corymbia, Devriesia stirlingiae from Stirlingia, Penidiella carpentariae from Carpentaria, Phaeococcomyces eucalypti from Eucalyptus, Phialophora livistonae from Livistona, Phyllosticta aristolochiicola from Aristolochia, Clitopilus austroprunulus on sclerophyll forest litter of Eucalyptus regnans and Toxicocladosporium posoqueriae from Posoqueria. Several species are also described from South Africa, namely: Ceramothyrium podocarpi from Podocarpus, Cercospora chrysanthemoides from Chrysanthemoides, Devriesia shakazului from Aloe, Penidiella drakensbergensis from Protea, Strelitziana cliviae from Clivia and Zasmidium syzygii from Syzygium. Other species include Bipolaris microstegii from Microstegium and Synchaetomella acerina from Acer (USA), Brunneiapiospora austropalmicola from Rhopalostylis (New Zealand), Calonectria pentaseptata from Eucalyptus and Macadamia (Vietnam), Ceramothyrium melastoma from Melastoma (Indonesia), Collembolispora aristata from stream foam (Czech Republic), Devriesia imbrexigena from glazed decorative tiles (Portugal), Microcyclospora rhoicola from Rhus (Canada), Seiridium phylicae from Phylica (Tristan de Cunha, Inaccessible Island), Passalora lobeliaefistulosis from Lobelia (Brazil) and Zymoseptoria verkleyi from Poa (The Netherlands). Valsalnicola represents a new ascomycete genus from Alnus (Austria) and Parapenidiella a new hyphomycete genus from Eucalyptus (Australia). Morphological and culture characteristics along with ITS DNA barcodes are also provided. © 2012 Nationaal Herbarium Nederland & Centraalbureau voor Schimmelcultures.

Sapientia, 1978, Vol. XXXIII, nº 128 (número completo)

Contenido: Vida del espíritu / Octavio N. Derisi – Tomás de Aquino y las tres esferas del espíritu / Ángel González Álvarez – Función de la razón en la ética / Teófilo Urdánoz – Entre la ontología y la antropología filosófica / Diego F. Pró -- Notas y comentarios -- Bibliografía

Diário da Constituinte [gravação de vídeo] : [programa n. 128]

Os constituintes avaliam o andamento da Assembleia Nacional Constituinte e destacam a necessidade de compactar o texto elaborado pela Comissão de Sistematização. Francisco Pinto (PMDB-BA) afirma que a nova Carta não pode ser conjuntural. Genebaldo Correia (PMDB-BA) defende uma Constituição de consenso, que represente a média da sociedade brasileira. Cristovam Chiaradia (PFL-MG) relata que devemos ter uma Constituição humana que contemple todas as classes sociais. Oswaldo Macedo (PMDB-PR) comenta a participação popular na Constituinte. Gonzaga Patriota (PMDB-PE) afirma que a população participou de muitos artigos da Constituição e acredita numa Carta duradoura. Celso Furtado, Ministro da Cultura, ressalta a importância da participação dos brasileiros neste momento. Carlos Eduardo Novaes, jornalista, conclama o povo a participar da Assembleia Nacional Constituinte (ANC). Na sessão O Povo Pergunta, cidadão quer saber o que a Constituinte está fazendo para melhorar a justiça no país. Leite Chaves (PMDB-PR) responde que a justiça será mais rápida, mais barata e mais próxima do povo, pois as cortes serão especializadas e alcançarão as demandas da sociedade.

The influence of blue-green algae on development of the zooplankton. [Translation of: Byull.mosk.Obshch.Ispyt.Prir.(Biol.) 67, 128-131, 1962]

Many have observed the reduction of the quantity of zooplankton in the presence of water blooms. It is known that in seas zooplankton as it were avoids places of accumulation of blue-green algae. By observations on one of the tributaries of the Rybinsk reservoir - the River Shumorovka - the authors tried by simultaneous collections to trace the changes in numbers, not only of zoo- and phytoplankton but also of bacteria. The plankton was collected by quantitative nets with suitable numbers of gauze and bacteria were taken account of by the method of direct calculation on membrane filters. It can be seen that the development of blue-green algae appears as an important factor, determining not only the intensity but also the direction of the process of production of zooplankton.

The influence of constant temperature on the embryonic growth of Asellus aquaticus L. (Crustacea) [Translation from: Vestsi Akademii Navuk Belorusskoi SSR, Seriya Biyal. 1979(1) 128-130]

It is known that an adequately large amount of work has been devoted to investigations on the influence of temperature on the growth period of aquatic invertebrates. However, the action of the given factors on the basic biological characteristics of embryonic growth in crustaceans is virtually unknown. An experimental study of the effectiveness of the transformation of matter and energy during the period of embryogenesis in the isopod Asellus aquaticus L. under different constant temperatures was carried out. Specimens were collected in the quarry lakes of the Kurasovshchin zone (city-Minsk). The authors developed a quantitative analysis of the basic energetic properties of animals during one of the physiological stages at different constant temperatures, which allows one to determine the temperature range in which the expenditure of energy, at a given instance during embryonic growth, is minimised. For A. aquaticus this range is represented by the limits 10-22°C, during which the least expenditure of energy is observed between 14.5 and 18.8°C.