| 词条 | Twofish |
| 释义 |
| name = Two fish | image = | caption = The Twofish algorithm | designers = Bruce Schneier | publish date = 1998 | derived from = Blowfish, SAFER, Square | derived to = | related to = Threefish | certification = AES finalist | key size = 128, 192 or 256 bits | block size = 128 bits | structure = Feistel network | rounds = 16 | cryptanalysis = Truncated differential cryptanalysis requiring roughly 251 chosen plaintexts.[1]Impossible differential attack that breaks 6 rounds out of 16 of the 256-bit key version using 2256 steps.[2] }} In cryptography, Twofish is a symmetric key block cipher with a block size of 128 bits and key sizes up to 256 bits. It was one of the five finalists of the Advanced Encryption Standard contest, but it was not selected for standardization. Twofish is related to the earlier block cipher Blowfish. Twofish's distinctive features are the use of pre-computed key-dependent S-boxes, and a relatively complex key schedule. One half of an n-bit key is used as the actual encryption key and the other half of the n-bit key is used to modify the encryption algorithm (key-dependent S-boxes). Twofish borrows some elements from other designs; for example, the pseudo-Hadamard transform[3] (PHT) from the SAFER family of ciphers. Twofish has a Feistel structure like DES. Twofish also employs a Maximum Distance Separable matrix. Back in 2000, on most software platforms Twofish was slightly slower than Rijndael (the chosen algorithm for Advanced Encryption Standard) for 128-bit keys, but somewhat faster for 256-bit keys. But after Rijndael was chosen as the Advanced Encryption Standard, Twofish has become much slower than Rijndael on the CPUs that support the AES instruction set.[4] Twofish was designed by Bruce Schneier, John Kelsey, Doug Whiting, David Wagner, Chris Hall, and Niels Ferguson; the "extended Twofish team" who met to perform further cryptanalysis of Twofish and other AES contest entrants included Stefan Lucks, Tadayoshi Kohno, and Mike Stay. The Twofish cipher has not been patented and the reference implementation has been placed in the public domain. As a result, the Twofish algorithm is free for anyone to use without any restrictions whatsoever. It is one of a few ciphers included in the OpenPGP standard (RFC 4880). However, Twofish has seen less widespread usage than Blowfish, which has been available longer. CryptanalysisIn 1999, Niels Ferguson published an impossible differential attack that breaks six rounds out of 16 of the 256-bit key version using 2256 steps.[2] {{As of|2000}}, the best published cryptanalysis on the Twofish block cipher is a truncated differential cryptanalysis of the full 16-round version. The paper claims that the probability of truncated differentials is 2−57.3 per block and that it will take roughly 251 chosen plaintexts (32 petabytes worth of data) to find a good pair of truncated differentials.[5]Bruce Schneier responds in a 2005 blog entry that this paper does not present a full cryptanalytic attack, but only some hypothesized differential characteristics: "But even from a theoretical perspective, Twofish isn't even remotely broken. There have been no extensions to these results since they were published in 2000."[6]See also
References1. ^ {{cite journal |author1=Ship Moriai |author2=Yiqun Lisa Yin | title=Cryptanalysis of Twofish (II) | year=2000 | url=http://www.schneier.com/twofish-analysis-shiho.pdf | format=PDF | accessdate=2013-01-14 }} 2. ^1 {{cite journal | author=Niels Ferguson | title=Impossible differentials in Twofish | date=1999-10-05 | url=https://www.schneier.com/paper-twofish-impossible.html | format=PDF | accessdate=2013-01-14 }} 3. ^{{cite web |url=https://webcache.googleusercontent.com/search?q=cache:1oLtvkOxKJ4J:https://www.cs.rit.edu/~ark/spring2013/482/team/u3/report.pdf}} 4. ^{{cite journal|author1=Bruce Schneier |author2=Doug Whiting | title=A Performance Comparison of the Five AES Finalists| date=2000-04-07| url=https://www.schneier.com/paper-aes-comparison.html| format=PDF/PostScript| accessdate=2013-01-14}} 5. ^ {{cite journal |author1=Shiho Moriai |author2=Yiqun Lisa Yin | title=Cryptanalysis of Twofish (II) | year=2000 | url=http://www.schneier.com/twofish-analysis-shiho.pdf | format=PDF | accessdate=2013-01-14 }} 6. ^{{cite web| last = Schneier| first = Bruce| authorlink = Bruce Schneier| title = Twofish Cryptanalysis Rumors| publisher = Schneier on Security blog| date = 2005-11-23| url = https://www.schneier.com/blog/archives/2005/11/twofish_cryptan.html| accessdate = 2013-01-14}} Articles
|author1=Bruce Schneier |author2=John Kelsey |author3=Doug Whiting |author4=David Wagner |author5=Chris Hall |author6=Niels Ferguson | title=The Twofish Encryption Algorithm | date=1998-06-15 | url=https://www.schneier.com/paper-twofish-paper.html | format=PDF/PostScript | accessdate=2013-01-14}}
|author1=Bruce Schneier |author2=John Kelsey |author3=Doug Whiting |author4=David Wagner |author5=Chris Hall |author6=Niels Ferguson | title = The Twofish Encryption Algorithm: A 128-Bit Block Cipher | publisher = John Wiley & Sons | date = 1999-03-22 | location = New York City | isbn = 0-471-35381-7}} External links
2 : Feistel ciphers|Free ciphers |
| 随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。