A New Keystream Generator MUGI
Summary :
We present a new keystream generator (KSG) MUGI, which is a variant of PANAMA proposed at FSE '98. MUGI has a 128-bit secret key and a 128-bit initial vector as parameters and generates a 64-bit string per round. The design is particularly suited for efficient hardware implementations, but the software performance of MUGI is excellent as well. A speed optimized implementation in hardware achieves about 3 Gbps with 26 Kgates, which is several times faster than AES. On the other hand, the security of MUGI has been evaluated by analyzing the applicability of re-synchronization attacks, related-key attacks, and attacks that exploit the linear correlation of an output sequence. Our analysis confirms that MUGI is a secure KSG.
- Publication
- IEICE TRANSACTIONS on Fundamentals Vol.E87-A No.1 pp.37-45
- Publication Date
- 2004/01/01
- Publicized
- Online ISSN
- DOI
- Type of Manuscript
- Special Section PAPER (Special Section on Cryptography and Information Security)
- Category
- Symmetric Cipher
Authors
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Dai WATANABE, Soichi FURUYA, Hirotaka YOSHIDA, Kazuo TAKARAGI, Bart PRENEEL, "A New Keystream Generator MUGI" in IEICE TRANSACTIONS on Fundamentals,
vol. E87-A, no. 1, pp. 37-45, January 2004, doi: .
Abstract: We present a new keystream generator (KSG) MUGI, which is a variant of PANAMA proposed at FSE '98. MUGI has a 128-bit secret key and a 128-bit initial vector as parameters and generates a 64-bit string per round. The design is particularly suited for efficient hardware implementations, but the software performance of MUGI is excellent as well. A speed optimized implementation in hardware achieves about 3 Gbps with 26 Kgates, which is several times faster than AES. On the other hand, the security of MUGI has been evaluated by analyzing the applicability of re-synchronization attacks, related-key attacks, and attacks that exploit the linear correlation of an output sequence. Our analysis confirms that MUGI is a secure KSG.
URL: https://global.ieice.org/en_transactions/fundamentals/10.1587/e87-a_1_37/_p
Copy
@ARTICLE{e87-a_1_37,
author={Dai WATANABE, Soichi FURUYA, Hirotaka YOSHIDA, Kazuo TAKARAGI, Bart PRENEEL, },
journal={IEICE TRANSACTIONS on Fundamentals},
title={A New Keystream Generator MUGI},
year={2004},
volume={E87-A},
number={1},
pages={37-45},
abstract={We present a new keystream generator (KSG) MUGI, which is a variant of PANAMA proposed at FSE '98. MUGI has a 128-bit secret key and a 128-bit initial vector as parameters and generates a 64-bit string per round. The design is particularly suited for efficient hardware implementations, but the software performance of MUGI is excellent as well. A speed optimized implementation in hardware achieves about 3 Gbps with 26 Kgates, which is several times faster than AES. On the other hand, the security of MUGI has been evaluated by analyzing the applicability of re-synchronization attacks, related-key attacks, and attacks that exploit the linear correlation of an output sequence. Our analysis confirms that MUGI is a secure KSG.},
keywords={},
doi={},
ISSN={},
month={January},}
Copy
TY - JOUR
TI - A New Keystream Generator MUGI
T2 - IEICE TRANSACTIONS on Fundamentals
SP - 37
EP - 45
AU - Dai WATANABE
AU - Soichi FURUYA
AU - Hirotaka YOSHIDA
AU - Kazuo TAKARAGI
AU - Bart PRENEEL
PY - 2004
DO -
JO - IEICE TRANSACTIONS on Fundamentals
SN -
VL - E87-A
IS - 1
JA - IEICE TRANSACTIONS on Fundamentals
Y1 - January 2004
AB - We present a new keystream generator (KSG) MUGI, which is a variant of PANAMA proposed at FSE '98. MUGI has a 128-bit secret key and a 128-bit initial vector as parameters and generates a 64-bit string per round. The design is particularly suited for efficient hardware implementations, but the software performance of MUGI is excellent as well. A speed optimized implementation in hardware achieves about 3 Gbps with 26 Kgates, which is several times faster than AES. On the other hand, the security of MUGI has been evaluated by analyzing the applicability of re-synchronization attacks, related-key attacks, and attacks that exploit the linear correlation of an output sequence. Our analysis confirms that MUGI is a secure KSG.
ER -
English
