Weak Key - No Weak Keys As A Design Goal

No Weak Keys As A Design Goal

The goal of having a 'flat' keyspace (i.e., all keys equally strong) is always a cipher design goal. As in the case of DES, sometimes a small number of weak keys is acceptable, provided that they are all identified or identifiable. An algorithm that has unknown weak keys does not inspire much trust.

The two main countermeasures against inadvertently using a weak key:

  • Checking generated keys against a list of known weak keys, or building rejection of weak keys into the key scheduling.
  • When the number of weak keys is known to be very small (in comparison to the size of the keyspace), generating a key uniformly at random ensures that the probability of it being weak is a (known) very small number.

A large number of weak keys is a serious flaw in any cipher design, since there will then be a (perhaps too) large chance that a randomly generated one will be a weak one, compromising the security of messages encrypted under it. It will also take longer to check randomly generated keys for weakness in such cases, which will tempt shortcuts in interest of 'efficiency'.

However, weak keys are much more often a problem where the adversary has some control over what keys are used, such as when a block cipher is used in a mode of operation intended to construct a secure cryptographic hash function (e.g. Davies-Meyer).

Read more about this topic:  Weak Key

Famous quotes containing the words weak, keys, design and/or goal:

    Against self-slaughter
    There is a prohibition so divine
    That cravens my weak hand.
    William Shakespeare (1564–1616)

    Bless all useful objects,
    the spoons made of bone,
    the mattress I cook my dreams upon,
    the typewriter that is my church
    with an altar of keys always waiting.
    Anne Sexton (1928–1974)

    We find that Good and Evil happen alike to all Men on this Side of the Grave; and as the principle Design of Tragedy is to raise Commiseration and Terror in the Minds of the Audience, we shall defeat this great End, if we always make Virtue and Innocence happy and successful.
    Joseph Addison (1672–1719)

    Religion means goal and way, politics implies end and means. The political end is recognizable by the fact that it may be attained—in success—and its attainment is historically recorded. The religious goal remains, even in man’s highest experiences, that which simply provides direction on the mortal way; it never enters into historical consummation.
    Martin Buber (1878–1965)