__NOTOC__ Turing is a

stream cipher stream cipher is a symmetric key cipher where plaintext digits are combined with a pseudorandom cipher digit stream ( keystream). In a stream cipher, each plaintext digit is encrypted one at a time with the corresponding digit of the keystrea ...

developed by

Gregory G. Rose Gregory G. "Greg" Rose (born July 15, 1955, in Sydney, Australia) was a senior vice president of technology for Qualcomm. Rose is noted for designing the SOBER family of stream ciphers for wireless telephony. Together with Philip Hawkes, he also ...

and Philip Hawkes at

Qualcomm Qualcomm Incorporated () is an American multinational corporation headquartered in San Diego, California, and Delaware General Corporation Law, incorporated in Delaware. It creates semiconductors, software and services related to wireless techn ...

for

CDMA Code-division multiple access (CDMA) is a channel access method used by various radio communication technologies. CDMA is an example of multiple access, where several transmitters can send information simultaneously over a single communicatio ...

and Philip Hawkes, Turing: A Fast Stream Cipher,

Fast Software Encryption The International Association for Cryptologic Research (IACR) is a non-profit scientific organization that furthers research in cryptology and related fields. The IACR was organized at the initiative of David Chaum at the CRYPTO '82 conference. ...

2003, pp. 290–30
(PDF)
Turing generates 160 bits of output in each round by applying a non-linear filter to the internal state of an

LFSR In computing, a linear-feedback shift register (LFSR) is a shift register whose input bit is a linear function of its previous state. The most commonly used linear function of single bits is exclusive-or (XOR). Thus, an LFSR is most often a sh ...

. It is named after

Alan Turing Alan Mathison Turing (; 23 June 1912 – 7 June 1954) was an English mathematician, computer scientist, logician, cryptanalyst, philosopher and theoretical biologist. He was highly influential in the development of theoretical computer ...

. It was developed based on the SOBER cipher introduced by Rose in 1998. This is evident in its major component, the Linear Feedback Shift Register (LFSR), which is the same technology found in the family of SOBER machines. Turing, however, is distinguished from its predecessors by the way it produces five words (five times more) of output for every internal update. It also provides up to 256-bit key strength and is designed to be fast in software, achieving around 5.5 cycles/byte on some

x86 x86 (also known as 80x86 or the 8086 family) is a family of complex instruction set computer (CISC) instruction set architectures initially developed by Intel, based on the 8086 microprocessor and its 8-bit-external-bus variant, the 8088. Th ...

processors. There are experts who found that the Turing stream cipher has a number of weaknesses when faced with chosen IV attacks. For instance, its key scheduling algorithm has the same secret key for different initialization vectors and this is found to lower the system's security.

References

Bibliography

* Antoine Joux and Frédéric Muller, A Chosen IV Attack Against Turing,

Selected Areas in Cryptography Selected Areas in Cryptography (SAC) is an international cryptography Academic conference, conference (originally a workshop) held every August in Canada since 1994. The first workshop was organized by Carlisle Adams, Henk Meijer, Stafford Tavares ...

2003, pp. 194–20
(PDF)

External links

Optimized Java implementation of Turing algorithm

Turing: a Fast Stream Cipher

Slides and C reference implementation at Qualcomm
2003 introductions Stream ciphers Qualcomm Alan Turing {{crypto-stub

See also

References

Bibliography

External links