Forward Search as a Cryptanalytic Tool Against a Public Key Privacy Channel

摘要

In symmetric cryptosystems that depend on a single (secret) key for both encryption and decryption, a cryptanalyst - since the key is unknown to him - must either work backward from the cipher or else from the cipher and some known pairs of plaintext messages and matching ciphers in attempting to recover the plaintext. In an asymmetric (two key) cryptosystem used in the public key, i.e., privacy channel, mode where the encryption key is publicly exposed so that anyone who wishes can encrypt messages that can only be decrypted by the person having the (secret) decryption key, a cryptanalytic weakness may occur that has no counterpart in symmetric systems. If the entropy of the input messages is too small (roughly speaking if it is computationally feasible to search through the most likely messages) either because the total number of messages is small or because a small number of the messages occur with high probabilities, the cryptanalyst can pre-encrypt these messages to form a cipher file that can then be matched against observed ciphers to accomplish a simple substitution decryption. This forward search cryptanalytic weakness of a public key privacy channel is purely a function of the entropy of the plaintext messages and does not depend on the existence of any cryptanalytic weakness in the concealment of the secret decryption key from a knowledge of the public encryption key in the underlying public key algorithm. (ERA citation 07:048942)