International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

A Uniform Framework for Cryptanalysis of the Bluetooth $E_0$ Cipher

Authors:
Ophir Levy
Avishai Wool
Download:
URL: http://eprint.iacr.org/2005/107
Search ePrint
Search Google
Abstract: In this paper we analyze the $E_0$ cipher, which is the encryption system used in the Bluetooth specification. We suggest a uniform framework for cryptanalysis of the $E_0$ cipher. Our method requires 128 known bits of the keystream in order to recover the initial state of the LFSRs, which reflects the secret key of this encryption engine. In one setting, our framework reduces to an attack of D. Bleichenbacher. In another setting, our framework is equivalent to an attack presented by Fluhrer and Lucks. Our best attack can recover the initial state of the LFSRs after solving $2^{86}$ boolean linear systems of equations, which is roughly equivalent to the results obtained by Fluhrer and Lucks.
BibTeX
@misc{eprint-2005-12443,
  title={A Uniform Framework for Cryptanalysis of the Bluetooth $E_0$ Cipher},
  booktitle={IACR Eprint archive},
  keywords={secret-key cryptography /},
  url={http://eprint.iacr.org/2005/107},
  note={ yash@eng.tau.ac.il 12884 received 11 Apr 2005},
  author={Ophir Levy and Avishai Wool},
  year=2005
}