vulcan-cryptanalysis

More documents

Recommendations

Info

A Vulcan Key Schedule Simulation %----------------------------------------------------------- % Vulcan "key schedule" simulation % 2014-05-28 --- CJR % input: 24-digit octal cryptovariable "cv" % outputs: 128-bit SRAM array "sram" % 8-bit CV shift register "cv8" % converts 71-bit user-supplied CV into 138-bit Vulcan CV % prints out various intermediate results for inspection %----------------------------------------------------------- % check for user-supplied input & substitute default if none if((exist(’cv’) == 0)||(length(cv) != 24)) cv = [7 6 5 4 3 2 1 0,... 7 6 5 4 3 2 1 0,... 7 6 5 4 3 2 1 0]; end % convert CV from 24 octal digits to 72 bits cvb = zeros(1,72); for ii = 1:24 dig = cv(ii); for jj = 1:3 cvb(3*(ii-1)+(3-jj)+1) = mod(dig,2); dig = floor(dig/2); end end printf("CV = %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d %0d... %0d %0d %0d %0d %0d %0d %0d\n", reshape(cvb,3,24)’*[4 2 1]’); % toss out MSB of last octal digit to get correct 71-bit CV cvb = [cvb(1:69) cvb(71:72)]; % form 64-bit data word from 64 bits of CV cv64 = reshape(cvb(1:66),3,22)’; cv64 = reshape(flipud(cv64)’,1,66); cv64 = cv64(3:66); printf("data64 = %02X %02X %02X %02X %02X %02X %02X %02X\n",... reshape(cv64,8,8)’*[128 64 32 16 8 4 2 1]’); % compute 64-bit parity word from 64-bit data word pr64 = zeros(1,64); taps = [0, 1, 0, 1, 0, 0, 1, 0,... 0, 0, 0, 0, 0, 0, 0, 0,... 1, 0, 0, 1, 1, 0, 1, 1,... 1, 1, 1, 1, 0, 0, 0, 1,... 1, 1, 1, 0, 1, 1, 0, 1,... 0, 1, 0, 0, 0, 0, 0, 0,... 1, 1, 1, 0, 1, 0, 1, 0,... 1, 1, 0, 0, 0, 0, 1, 0]; for ii = 64:-1:1 bb = bitxor(cv64(ii),pr64(64)); pr64 = [0 pr64(1:63)]; if(bb == 1) pr64 = bitxor(pr64,taps); end end pp = mod(sum(cv64),2); pr64 = [pp pr64(2:64)]; printf("parity64 = %02X %02X %02X %02X %02X %02X %02X %02X\n",... reshape(pr64,8,8)’*[128 64 32 16 8 4 2 1]’); 30
% form 8-bit data word from 7 bits of CV cv8 = [0 cvb(70) cvb(71) cvb(67) cvb(68) cvb(69) cvb(64) cvb(65)]; if(sum(cv8)
Page 1 and 2: Vulcan: A Proprietary Cipher of the
Page 3 and 4: As a final comment concerning Motor
Page 5 and 6: known how vulnerable this cipher ac
Page 7 and 8: 7 Figure 3: SC76807 Die Shot
Page 9 and 10: of the SC76807 in a later section,
Page 11 and 12: At the far right side of the chip i
Page 13 and 14: signal. The WE input on Pin 9 and t
Page 15 and 16: its and are always set to 0 by the
Page 17 and 18: 4 DVP Key Loader Based on our analy
Page 19 and 20: 4.2 Reverse Engineering Understandi
Page 21 and 22: 5.1 Key Schedule We created an Octa
Page 23 and 24: plaintext bit (i.e. we are mounting
Page 25 and 26: cryptovariable in real time solely
Page 27 and 28: exposed, it would be enlightening i
Page 29: [6] Motorola Encryption Topics, htt
Page 33 and 34: B Vulcan Encrypt Simulation %------
Page 35 and 36: D Vulcan Cryptanalysis Simulation %
Page 37 and 38: 0,1,0,0,1,0,0,0,0,1,0,0,0,1,0,1,0,1
Page 39 and 40: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0
Page 41 and 42: c = bitxor(c,bitand(cv8(7),ctd(nn-2
Page 43 and 44: E DVP Key Loader Firmware Disassemb
Page 45 and 46: F09A : BD F1 C0 " " jsr $F1C0 put t
Page 47 and 48: F166 : 5C "\" incb F167 : 20 F9 " "
Page 49 and 50: F22C : CE FF 9D " " ldx #$FF9D Load
Page 51 and 52: -----------------------------------
Page 53 and 54: F3B9 : 81 04 " " cmpa #$04 F3BB : 2
Page 55 and 56: F48B : 39 "9" rts -----------------
Page 57 and 58: F553 : 39 "9" rts -----------------
Page 59 and 60: F62C : 8E F8 E2 " " lds #$F8E2 tab:
Page 61 and 62: F707 : 7E F9 10 "~ " jmp $F910 disp
Page 63 and 64: F7CA : 97 82 " " staa PB F7CC : 96
Page 65 and 66: F87F : 08 " " inx F880 : D6 74 " t"
Page 67 and 68: F947 : 97 82 " " staa PB F949 : 88
Page 69 and 70: FA05 : 5A "Z" decb FA06 : 26 F4 "&
Page 71 and 72: FAE4 : 27 03 "’ " beq $FAE9 FAE6
Page 73 and 74: FBC8 : 27 05 "’ " beq $FBCF . . .
Page 75 and 76: FC80 : 01 " " nop FC81 : D6 74 " t"
Page 77 and 78: FD31 : 20 08 " " bra $FD3B --------
Page 79 and 80: . . . . . . . . . . . . . . . . FE0
Page 81 and 82:
FEAD : 27 04 "’ " beq $FEB3 FEAF
Page 83 and 84:
FF61 : BD F1 70 " p" jsr $F170 writ
show all

vulcan-cryptanalysis

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?