Cryptanalytic Attack

However, Vigenère Cipher not entirely secure as the key could be repeated thus make it vulnerable to Frequency Analysis if there is too many repetitions. Another way to attack it is by guessing the number of alphabets being used, and then attack by brute force. If the key is too short, then it is easy to break with Kasiski Method#.

Side-Channel Attack is a kind of #Cryptanalytic Attack focuses on the time taken to respond to specific queries, total power consumption, or electromagnetic radiation emitted by the encryption scheme.

The security of RSA is guarantee by its Trapdoor One-Way Function# nature as primes \(p\) and \(q\) are only known to the key owner. It is impossible to do a Brute Force Attack on RSA due to the large key size. Other Cryptanalytic Attack such as mathematical attack based on difficulty of computing \(\phi(n)\), by factoring modulus \(n\) (can be overcome by having a larger \(n\)), timing attacks# on decryption algorithm, and chosen ciphertext attacks (CCA) can be done on RSA.

A Cryptanalytic Attack done on Permutation/Transposition Cryptographic algorithm is by first guessing period, try all possible permutation on the period (Brute Force Attack), search for common patterns and then use lists of common diagrams and trigrams (Frequency Analysis#).

MITM is a #known plaintext attack on an #encryption scheme by obtaining the ciphertext in between two encryption algorithms, and comparing the encrypted output from the plaintext and decrypted output from the final ciphertext. This process could be further understood with the following equation:

MITM is a #Cryptanalytic Attack where the Cryptanalyst found a way to be in between two parties in a communication channel. It is exceptionally dangerous to encryption scheme that involves key exchange such as Symmetric Cryptography# and Asymmetric Cryptography#. It is form of #Interception.

Kasiski Method is a #Cryptanalytic Attack, developed by Baddage and Kasiski, attempts to break #Polyalphabetic Cipher by deducing the length of the keyword. The repetition in the ciphertext, especially in Vigenère Cipher gives clues to the key length by examining the period apart between multiple identical ciphertext patterns and find out the common factor# of the distances (excluding 1 as a possible key length). After that, we could easily do a Frequency Analysis on the ciphertext.

Integral Cryptanalysis Attack is a #chosen plaintext attack utilising sets of plaintexts in which part of the plaintext is kept unchanged but with slight modification on the rest.

IND-CCA is the highest security notion for an encryption scheme#. It is resistant to the most lenient Cryptanalytic Attack#, that is to distinguish two ciphertexts using chosen ciphertext attack.

Frequency Analysis is a #Cryptanalytic Attack utilises the nature of natural language (human language) where there is redundancy in letter usage. Not every letter has the same frequency as others.

Note: Hashing is used to avoid certain attacks.

Differential Cryptanalysis Attack is a #chosen plaintext attack on block ciphers which the Cryptanalyst analyses the relationship of pairs of plaintexts to the targeted algorithm.

We can take advantage of the multiplicative nature of #Rivest-Shamir-Adleman (RSA) and utilise it in our attempts to carry out #CCA. The multiplicative properties of RSA is stated below:

We could perform a #CCA on El Gamal Encryption# with the following steps assuming that we have the ciphertext \(C = (c_1, c_2)\):

If a #Cryptanalysis could crack an encryption scheme with an attempts less than of the Brute Force Attack, then it is considered to be a Cryptanalytic Attack on the scheme.

In addition, it is a must for an Asymmetric Cryptographic scheme to be resistant against Chosen Plaintext Attack (CPA)# since owning the public-key render a full control over the encryption algorithm. Otherwise, the scheme would be useless.

Analytic Attacks is a #Cryptanalytic Attack utilising the encryption information gathered before carrying out attack to recover some or all subkey bits and if necessary involving Brute Force Attack#. They are generally categorised as statistical attacks.