Unformatted text preview: made at Crypto ’94 that Skipjack has “a 48bit internal structure, ” implies that it is similar in design to SHA (see Section 18.7) but with four 16bit subblocks: three subblocks go through a keydependent oneway function to produce 16 bits, which are XORed with the remaining subblock; then the whole block is circularly shifted 16 bits to become the input to the next round, or shift. This also implies 128 bytes of Sbox data. I suspect that the Sboxes are keydependent. The structure of Skipjack is probably similar to DES. The NSA realizes that their tamperproof hardware will be reverseengineered eventually; they won’t risk any advanced cryptographic techniques. The fact that the NSA is planning to use the Skipjack algorithm to encrypt their Defense Messaging System (DMS) implies that the algorithm is secure. To convince the skeptics, NIST allowed a panel of “respected experts from outside the government...access to the confidential details of the algorithm to assess its capabilities and publicly report its findings” [812]. The preliminary report of these experts [262] (there never was a final report, and probably never will be) concluded that: Under an assumption that the cost of processing power is halved every 18 months, it will be 36 years before the difficulty of breaking Skipjack by exhaustive search will be equal to the difficulty of breaking DES today. Thus, there is no significant risk that Skipjack will be broken by exhaustive search in the next 30–40 years. There is no significant risk that Skipjack can be broken through a shortcut method of attack, including differential cryptanalysis. There are no weak keys; there is no complementation property. The experts, not having time to evaluate the algorithm to any great extent, instead evaluated NSA’s own design and evaluation process. The strength of Skipjack against a cryptanalytic attack does not depend on the secrecy of the algorithm. Of course, the panelists did not look at the algorithm lon...
View
Full Document
 Fall '10
 ALIULGER
 Cryptography, Bruce Schneier, Applied Cryptography, EarthWeb, Search Search Tips

Click to edit the document details