Cryptomeria cipher

From Wikipedia, the free encyclopedia

Cryptomeria cipher

Designer(s):	4C Entity
First published:	2003
Derived from:	DES
Related to:	CSS
Key size(s):	56 bits
Block size(s):	64 bits
Structure:	Feistel network
Rounds:	10

The Cryptomeria cipher, commonly referred to as C2, is a proprietary block cipher defined and licensed by the 4C Entity. It is the successor to CSS algorithm (used for DVD-Video) and was designed for the CPRM/CPPM Digital Rights Management scheme which are used by DRM-protected Secure Digital cards and DVD-Audio discs.

[edit] Cipher details

The C2 symmetric key algorithm is a 10-round Feistel cipher. Like DES, it has a key size of 56 bits and a block size of 64 bits. The encryption and decryption algorithms are available for peer review, but implementations require the so-called "secret constant", the values of the substitution boxes, which are only available under a license from the 4C Entity.

Due to the relatively short key size and straightforward implementation on unspecialized hardware, cracking the cipher through brute force utilizing commodity hardware is likely to become practical in the short term future.^{[citation needed]} No cryptanalytic attacks on the cipher have been published as of December 2006.

[edit] Distributed brute force cracking effort

Following an announcement by Japanese HDTV broadcasters that they would start broadcasting programs with the copy-once broadcast flag starting with 2004-04-05, a distributed Cryptomeria cipher brute force cracking effort was launched on 2003-12-21. To enforce the broadcast flag, digital video recorders employ CPRM-compatible storage devices, which the project aimed to circumvent. However, the project was ended and declared a failure on 2004-03-08 after searching the entire 56-bit keyspace, failing to turn up a valid key for unknown reasons.^[1]

[edit] References

1. ^ Distributed C2 Brute Force Attack: Status Page. Retrieved on August 14, 2006.
   C2 Brute Force Crack - team timecop. Archived version of cracking team's English web site. Retrieved on October 30, 2006.
   Discussion about the attack (Archived). Retrieved on October 30, 2006.

• (2003-01-17). "C2 Block Cipher Specification" (PDF). 1.0. 4C Entity, LLC. Retrieved on 2006-08-13.
• (2006-01-23) "Software Obfuscation from Crackers' Viewpoint" (PDF). Proceedings of the IASTED International Conference. Retrieved on 2006-08-13. 

Block ciphers v • d • e
Algorithms: 3-Way | AES | Akelarre | Anubis | ARIA | BaseKing | Blowfish | C2 | Camellia | CAST-128 | CAST-256 | CIKS-1 | CIPHERUNICORN-A | CIPHERUNICORN-E | CMEA | Cobra | COCONUT98 | Crab | CRYPTON | CS-Cipher | DEAL | DES | DES-X | DFC | E2 | FEAL | FROG | G-DES | GOST | Grand Cru | Hasty Pudding Cipher | Hierocrypt | ICE | IDEA | IDEA NXT | Iraqi | Intel Cascade Cipher | KASUMI | KHAZAD | Khufu and Khafre | KN-Cipher | Libelle | LOKI89/91 | LOKI97 | Lucifer | M6 | MacGuffin | Madryga | MAGENTA | MARS | Mercy | MESH | MISTY1 | MMB | MULTI2 | NewDES | NOEKEON | NUSH | Q | RC2 | RC5 | RC6 | REDOC | Red Pike | S-1 | SAFER | SC2000 | SEED | Serpent | SHACAL | SHARK | Skipjack | SMS4 | Square | TEA | Triple DES | Twofish | UES | Xenon | xmx | XTEA | Zodiac
Design: Feistel network | Key schedule | Product cipher | S-box | SPN Attacks: Brute force | Linear / Differential / Integral cryptanalysis | Mod n | Related-key | Slide | XSL
Standardization: AES process | CRYPTREC | NESSIE Misc: Avalanche effect | Block size | IV | Key size | Modes of operation | Piling-up lemma | Weak key
Cryptography v • d • e
History of cryptography | Cryptanalysis | Cryptography portal | Topics in cryptography
Symmetric-key algorithm | Block cipher | Stream cipher | Public-key cryptography | Cryptographic hash function | Message authentication code | Random numbers