Presentation is loading. Please wait.

Presentation is loading. Please wait.

Blowfish A widely used block cipher. Blowfish Designed by Bruce Schneier (1993) A variant of it (Twofish) was an AES finalist candidate 64-bit block size,

Published byEmmeline Wilkins Modified over 9 years ago

Similar presentations

Presentation on theme: "Blowfish A widely used block cipher. Blowfish Designed by Bruce Schneier (1993) A variant of it (Twofish) was an AES finalist candidate 64-bit block size,"— Presentation transcript:

1 Blowfish A widely used block cipher

2 Blowfish Designed by Bruce Schneier (1993) A variant of it (Twofish) was an AES finalist candidate 64-bit block size, 16-round Feistel network structure. Variable key size: 32-448 bits Key-dependent S-Boxes

3 Blowfish Feistel Structure Unlike a regular Feistel network, both sides are modified in each round: On 1 st round, –R 1 = L 0  P 1 ; –L 1 = R 0  F(L 0  P 1 ) http://en.wikipedia.org/wiki/Blowfish_(cipher )

4 Blowfish round function Four 8-to-32 bits S- Boxes are used.  indicates XOR indicates addition mod 2 32 Mixing XOR and addition mod 2 32 complicates cryptanalysis http://en.wikipedia.org/wiki/Blowfish_(cipher)

5 Key schedule In Blowfish, the key schedule has two components –Initialization of the S-boxes –Initialization of the P-array (proper key schedule of a Feistel network) The entries of the P-array and S-boxes are first filled with the fractional part of the expansion of  in hexadecimal.

6 Key schedule (2) P 1 = 243F6A88, P 2 = 85A308D3,..., S (4:254) =578FDFE3, S (4:255) =3AC372E6 The key K is XORED with the P-array, cycling over the key as needed. A 64-bit block of 0’s is encrypted with the Blowfish algorithm and P 1, P 2 are replaced with the result, which is then encrypted again and substitutes P 3, P 4. This continues until all P-array and all S-Boxes entries are replaced.

7 Key schedule algorithm Initialize P, S With ( frac(  ) ) 16. XOR P, S with cyclically extended key. For (P, S) = (P 1,P 2,..., S (4:254), S (4:255) ) Do –Replace P 1, P 2 by Enc(P;S; 0) –Replace P 3, P 4 by Enc(P;S; P 1 ||P 2 ) –... –Replace P 17, P 18 by Enc(P;S; P 15 ||P 16 ) –Replace S (1:0), S (1:1) by Enc(P;S; P 17 ||P 18 ) –... –Replace S (4:254), S (4:255) by Enc(P;S;S (4:252) ||S (4:253) )

8 Notes The S-boxes are read as simple lookup tables. –For instance, if S 2 is given the 8-bit input which is the binary expansion of the integer 127, then S (2:127) is returned. 521 applications of Blowfish are required to install a new key: –There are 18 P-array entries and 4x256 S-Box entries = total of 1042 entries. Each application of Blowfish replaces two of these entries.

9 Blowfish facts Low key-agility and/or high memory demands makes Blowfish impractical in constrained environments. Small (64-bit) blocksize makes it insecure for applications that encrypt large amounts of data with the same key (such as data archival, file system encryption, etc.) Implemented in SSL and other security suites. Blowfish’s speed makes it an good choice for applications that encrypt intermediate amounts of data, such as typical of network communications (e-mail, file transfers). No attacks on Blowfish are known that work on the full 16-round official version (certain attacks recover some information from versions with up to 14- rounds).

Download ppt "Blowfish A widely used block cipher. Blowfish Designed by Bruce Schneier (1993) A variant of it (Twofish) was an AES finalist candidate 64-bit block size,"

Similar presentations

Origins  clear a replacement for DES was needed Key size is too small Key size is too small The variants are just patches The variants are just patches.

Origins  clear a replacement for DES was needed Key size is too small Key size is too small The variants are just patches The variants are just patches.
1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.

1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.
Cryptography and Network Security Chapter 5 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 5 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 5

Cryptography and Network Security Chapter 5
Cryptography and Network Security

Cryptography and Network Security
1 The AES block cipher Niels Ferguson. 2 What is it? Block cipher: encrypts fixed-size blocks. Design by two Belgians. Chosen from 15 entries in a competition.

1 The AES block cipher Niels Ferguson. 2 What is it? Block cipher: encrypts fixed-size blocks. Design by two Belgians. Chosen from 15 entries in a competition.
FEAL FEAL 1.

FEAL FEAL 1.
AES clear a replacement for DES was needed

AES clear a replacement for DES was needed
Cryptography and Network Security (AES) Dr. Monther Aldwairi New York Institute of Technology- Amman Campus 10/18/2009 INCS 741: Cryptography 10/18/20091Dr.

Cryptography and Network Security (AES) Dr. Monther Aldwairi New York Institute of Technology- Amman Campus 10/18/2009 INCS 741: Cryptography 10/18/20091Dr.
The Design of Improved Dynamic AES and Hardware Implementation Using FPGA 89321032 游精允.

The Design of Improved Dynamic AES and Hardware Implementation Using FPGA 游精允.
Chap. 6: Contemporary Symmetric Ciphers Jen-Chang Liu, 2004 Adapted from Lecture slides by Lawrie Brown.

Chap. 6: Contemporary Symmetric Ciphers Jen-Chang Liu, 2004 Adapted from Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 5. Chapter 5 –Advanced Encryption Standard It seems very simple. It is very simple. But if you don't know.

Cryptography and Network Security Chapter 5. Chapter 5 –Advanced Encryption Standard "It seems very simple." "It is very simple. But if you don't know.
Cryptography and Network Security Chapter 5 Fourth Edition by William Stallings.

Cryptography and Network Security Chapter 5 Fourth Edition by William Stallings.
Foundations of Network and Computer Security J J ohn Black Lecture #6 Sep 10 th 2007 CSCI 6268/TLEN 5831, Fall 2007.

Foundations of Network and Computer Security J J ohn Black Lecture #6 Sep 10 th 2007 CSCI 6268/TLEN 5831, Fall 2007.
CS470, A.SelcukAfter the DES1 Block Ciphers After the DES CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukAfter the DES1 Block Ciphers After the DES CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Dr. Lo’ai Tawalbeh 2007 Chapter 5: Advanced Encryption Standard (AES) Dr. Lo’ai Tawalbeh New York Institute of Technology (NYIT) - 2007 Jordan’s Campus.

Dr. Lo’ai Tawalbeh 2007 Chapter 5: Advanced Encryption Standard (AES) Dr. Lo’ai Tawalbeh New York Institute of Technology (NYIT) Jordan’s Campus.
Encryption Schemes Second Pass Brice Toth 21 November 2001.

Encryption Schemes Second Pass Brice Toth 21 November 2001.
Dan Boneh Block ciphers The data encryption standard (DES) Online Cryptography Course Dan Boneh.

Dan Boneh Block ciphers The data encryption standard (DES) Online Cryptography Course Dan Boneh.
Cryptanalysis of Modern Symmetric-Key Block Ciphers [Based on “A Tutorial on Linear and Differential Cryptanalysis” by Howard Heys.] Modern block ciphers.

Cryptanalysis of Modern Symmetric-Key Block Ciphers [Based on “A Tutorial on Linear and Differential Cryptanalysis” by Howard Heys.] Modern block ciphers.
Chapter 5 Advanced Encryption Standard. Origins clear a replacement for DES was needed –have theoretical attacks that can break it –have demonstrated.

Chapter 5 Advanced Encryption Standard. Origins clear a replacement for DES was needed –have theoretical attacks that can break it –have demonstrated.

Similar presentations

Ads by Google