algorithms banking cipher criptografia crypto cryptograhpy cryptography demon encryption initialization initialzation irc it603 iv jruby key mobile nonce research rgs security vector

My tags:

From Wikipedia, the free encyclopedia

In cryptography, an initialization vector (IV) is a block of bits that is required to allow a stream cipher or a block cipher to be executed in any of several streaming modes of operation to produce a unique stream independent from other streams produced by the same encryption key, without having to go through a (usually lengthy) re-keying process.

The size of the IV depends on the encryption algorithm and on the cryptographic protocol in use and is normally as large as the block size of the cipher or as large as the encryption key. The IV must be known to the recipient of the encrypted information to be able to decrypt it. This can be ensured in a number of ways: by transmitting the IV along with the packet, by agreeing on it beforehand during the key exchange or the handshake, by calculating it (usually incrementally), or by measuring such parameters as current time (used in hardware authentication tokens such as RSA SecurID, VASCO Digipass, etc.), IDs such as sender's and/or recipient's address or ID, file ID, the packet, sector or cluster number, etc. A number of variables can be combined or hashed together, depending on the protocol. If the IV is chosen at random, the cryptographer must take into consideration the probability of collisions, and if an incremental IV is used as a nonce, the algorithm's resistance to related-IV attacks must also be considered.

Contents 1 Block Ciphers 2 Stream Ciphers 3 WEP IV 4 See also 5 References

[edit] Block Ciphers

IVs are implemented differently in block ciphers and in stream ciphers. In straight-forward operation of block ciphers or so-called Electronic Code Book (ECB) mode, encryption of the same plain text with the same key results in the same ciphertext, which is a considerable threat to security. Use of an initialization vector linearly added to (XORed with) the first block of plaintext or included in front of the plaintext prior to encryption in one of the streaming modes of operation solves this problem.

[edit] Stream Ciphers

In stream ciphers, IVs are loaded into the keyed internal secret state of the cipher, after which a number of cipher rounds is executed prior to releasing the first bit of output. For performance reasons, designers of stream ciphers try to keep that number of rounds as small as possible, but because determining the minimal secure number of rounds for stream ciphers is not a trivial task, and considering other issues such as entropy loss, unique to each cipher construction, related-IVs and other IV-related attacks are a known security issue for stream ciphers, which makes IV loading in stream ciphers a serious concern and a subject of ongoing research.

[edit] WEP IV

The 802.11 encryption algorithm called WEP (short for Wired Equivalent Privacy) used a "weak IV" that led to it being easily cracked.^[1] Packet injection allowed for WEP to be cracked in times as short as 15 minutes or less. This ultimately led to the deprecation of WEP.

[edit] See also

• Cryptographic nonce
• Salt (cryptography)
• Block cipher modes of operation
• CipherSaber (RC4 with IV)

[edit] References

• B. Schneier, 'Applied Cryptography', Wiley 1996
• N. Ferguson and B. Schneier, 'Practical Cryptography', Wiley 2003

v • d • e   Block ciphers Common algorithms: AES | Blowfish | DES | Triple DES | Serpent | Twofish Other algorithms: 3-Way | ABC | Akelarre | Anubis | ARIA | BaseKing | BassOmatic | BATON | BEAR and LION | C2 | Camellia | CAST-128 | CAST-256 | CIKS-1 | CIPHERUNICORN-A | CIPHERUNICORN-E | CLEFIA | CMEA | Cobra | COCONUT98 | Crab | CRYPTON | CS-Cipher | DEAL | DES-X | DFC | E2 | FEAL | FEA-M | FROG | G-DES | GOST | Grand Cru | Hasty Pudding cipher | Hierocrypt | ICE | IDEA | IDEA NXT | Intel Cascade Cipher | Iraqi | KASUMI | KeeLoq | KHAZAD | Khufu and Khafre | KN-Cipher | Ladder-DES | Libelle | LOKI97 | LOKI89/91 | Lucifer | M6 | M8 | MacGuffin | Madryga | MAGENTA | MARS | Mercy | MESH | MISTY1 | MMB | MULTI2 | MultiSwap | New Data Seal | NewDES | Nimbus | NOEKEON | NUSH | Q | RC2 | RC5 | RC6 | REDOC | Red Pike | S-1 | SAFER | SAVILLE | SC2000 | SEED | SHACAL | SHARK | Skipjack | SMS4 | Spectr-H64 | Square | SXAL/MBAL | Threefish | TEA | Treyfer | UES | Xenon | xmx | XTEA | XXTEA | Zodiac Design: Feistel network | Key schedule | Product cipher | S-box | P-box | SPN Attack (Cryptanalysis): Brute force | Linear | Differential | Integral | Impossible Differential | Boomerang | Mod n | Related-key | Slide | XSL Standardization: AES process | CRYPTREC | NESSIE Misc: Avalanche effect | Block size | IV | Key size | Modes of operation | Piling-up lemma | Weak key | EFF DES cracker | Key whitening v • d • e   Stream ciphers Widely used ciphers: RC4 | Block ciphers in stream mode      eSTREAM Portfolio:  Software: HC-128 | Rabbit | Salsa20/12 | SOSEMANUK   Hardware: Grain | MICKEY-128 | Trivium Other ciphers: A5/1 | A5/2 | E0 | FISH | ISAAC | MUGI | Panama | Phelix | Pike | Py | QUAD  | Scream | SEAL | SOBER | SOBER-128 | VEST | WAKE Theory: Shift register | LFSR | NLFSR | Shrinking generator | T-function | IV Attacks: Correlation attack | Correlation immunity v • d • e   Cryptography History of cryptography · Cryptanalysis · Cryptography portal · Topics in cryptography Symmetric-key algorithm · Block cipher · Stream cipher · Public-key cryptography · Cryptographic hash function · Message authentication code · Random numbers · Steganography