RC6

RC6
	The Feistel function of the RC6 algorithm.
General
Designers	Ron Rivest, Matt Robshaw, Ray Sidney, Yiqun Lisa Yin
First published	1998
Derived from	RC5
Certification	AES finalist
Cipher detail
Key sizes	128, 192, or 256 bits
Block sizes	128 bits
Structure	Feistel network (Type 2)
Rounds	20

Last updated November 04, 2023

In cryptography, RC6 (Rivest cipher 6) is a symmetric key block cipher derived from RC5. It was designed by Ron Rivest, Matt Robshaw, Ray Sidney, and Yiqun Lisa Yin to meet the requirements of the Advanced Encryption Standard (AES) competition. The algorithm was one of the five finalists, and also was submitted to the NESSIE and CRYPTREC projects. It was a proprietary algorithm, patented by RSA Security.

RC6 proper has a block size of 128 bits and supports key sizes of 128, 192, and 256 bits up to 2040-bits, but, like RC5, it may be parameterised to support a wide variety of word-lengths, key sizes, and number of rounds. RC6 is very similar to RC5 in structure, using data-dependent rotations, modular addition, and XOR operations; in fact, RC6 could be viewed as interweaving two parallel RC5 encryption processes, although RC6 does use an extra multiplication operation not present in RC5 in order to make the rotation dependent on every bit in a word, and not just the least significant few bits.

Encryption/decryption

Note that the key expansion algorithm is practically identical to that of RC5. The only difference is that for RC6, more words are derived from the user-supplied key.

// Encryption/Decryption with RC6-w/r/b// // Input:   Plaintext stored in four w-bit input registers A, B, C & D//  r is the number of rounds//  w-bit round keys S[0, ... , 2r + 3]// // Output: Ciphertext stored in A, B, C, D// // '''Encryption Procedure:'''B=B+S[0]D=D+S[1]fori=1tordo{t=(B*(2B+1))<<<lgwu=(D*(2D+1))<<<lgwA=((A^t)<<<u)+S[2i]C=((C^u)<<<t)+S[2i+1](A,B,C,D)=(B,C,D,A)}A=A+S[2r+2]C=C+S[2r+3]// '''Decryption Procedure:'''C=C-S[2r+3]A=A-S[2r+2]fori=rdownto1do{(A,B,C,D)=(D,A,B,C)u=(D*(2D+1))<<<lgwt=(B*(2B+1))<<<lgwC=((C-S[2i+1])>>>t)^uA=((A-S[2i])>>>u)^t}D=D-S[1]B=B-S[0]

Possible use in NSA "implants"

In August 2016, code reputed to be Equation Group or NSA "implants" for various network security devices was disclosed.^[2] The accompanying instructions revealed that some of these programs use RC6 for confidentiality of network communications.^[3]

Licensing

As RC6 was not selected for the AES, it was not guaranteed that RC6 is royalty-free. As of January 2017^[update], a web page on the official web site of the designers of RC6, RSA Laboratories, states the following:^[4]

"We emphasize that if RC6 is selected for the AES, RSA Security will not require any licensing or royalty payments for products using the algorithm".

The emphasis on the word "if" suggests that RSA Security Inc. may have required licensing and royalty payments for any products using the RC6 algorithm. RC6 was a patented encryption algorithm ( U.S. Patent 5,724,428 and U.S. Patent 5,835,600 ); however, the patents expired between 2015 and 2017.

Related Research Articles

In cryptography, a block cipher is a deterministic algorithm that operates on fixed-length groups of bits, called blocks. Block ciphers are the elementary building blocks of many cryptographic protocols. They are ubiquitous in the storage and exchange of data, where such data is secured and authenticated via encryption.

In cryptography, key size or key length refers to the number of bits in a key used by a cryptographic algorithm.

The Data Encryption Standard is a symmetric-key algorithm for the encryption of digital data. Although its short key length of 56 bits makes it too insecure for modern applications, it has been highly influential in the advancement of cryptography.

RSA (Rivest–Shamir–Adleman) is a public-key cryptosystem, one of the oldest that is widely used for secure data transmission. The acronym "RSA" comes from the surnames of Ron Rivest, Adi Shamir and Leonard Adleman, who publicly described the algorithm in 1977. An equivalent system was developed secretly in 1973 at Government Communications Headquarters (GCHQ), the British signals intelligence agency, by the English mathematician Clifford Cocks. That system was declassified in 1997.

In cryptography, RC4 is a stream cipher. While it is remarkable for its simplicity and speed in software, multiple vulnerabilities have been discovered in RC4, rendering it insecure. It is especially vulnerable when the beginning of the output keystream is not discarded, or when nonrandom or related keys are used. Particularly problematic uses of RC4 have led to very insecure protocols such as WEP.

Ronald Linn Rivest is a cryptographer and computer scientist whose work has spanned the fields of algorithms and combinatorics, cryptography, machine learning, and election integrity. He is an Institute Professor at the Massachusetts Institute of Technology (MIT), and a member of MIT's Department of Electrical Engineering and Computer Science and its Computer Science and Artificial Intelligence Laboratory.

In cryptography, RC5 is a symmetric-key block cipher notable for its simplicity. Designed by Ronald Rivest in 1994, RC stands for "Rivest Cipher", or alternatively, "Ron's Code". The Advanced Encryption Standard (AES) candidate RC6 was based on RC5.

Articles related to cryptography include:

In cryptography, Camellia is a symmetric key block cipher with a block size of 128 bits and key sizes of 128, 192 and 256 bits. It was jointly developed by Mitsubishi Electric and NTT of Japan. The cipher has been approved for use by the ISO/IEC, the European Union's NESSIE project and the Japanese CRYPTREC project. The cipher has security levels and processing abilities comparable to the Advanced Encryption Standard.

In cryptography, CAST-256 is a symmetric-key block cipher published in June 1998. It was submitted as a candidate for the Advanced Encryption Standard (AES); however, it was not among the five AES finalists. It is an extension of an earlier cipher, CAST-128; both were designed according to the "CAST" design methodology invented by Carlisle Adams and Stafford Tavares. Howard Heys and Michael Wiener also contributed to the design.

In cryptography, DES-X is a variant on the DES symmetric-key block cipher intended to increase the complexity of a brute-force attack. The technique used to increase the complexity is called key whitening.

In cryptography, RC2 is a symmetric-key block cipher designed by Ron Rivest in 1987. "RC" stands for "Ron's Code" or "Rivest Cipher"; other ciphers designed by Rivest include RC4, RC5, and RC6.

In cryptography, nothing-up-my-sleeve numbers are any numbers which, by their construction, are above suspicion of hidden properties. They are used in creating cryptographic functions such as hashes and ciphers. These algorithms often need randomized constants for mixing or initialization purposes. The cryptographer may wish to pick these values in a way that demonstrates the constants were not selected for a nefarious purpose, for example, to create a backdoor to the algorithm. These fears can be allayed by using numbers created in a way that leaves little room for adjustment. An example would be the use of initial digits from the number $π$ as the constants. Using digits of $π$ millions of places after the decimal point would not be considered trustworthy because the algorithm designer might have selected that starting point because it created a secret weakness the designer could later exploit.

NSA Suite B Cryptography was a set of cryptographic algorithms promulgated by the National Security Agency as part of its Cryptographic Modernization Program. It was to serve as an interoperable cryptographic base for both unclassified information and most classified information.

The RSA Secret-Key Challenge was a series of cryptographic contests organised by RSA Laboratories with the intent of helping to demonstrate the relative security of different encryption algorithms. The challenge ran from 28 January 1997 until May 2007.

In cryptography, key whitening is a technique intended to increase the security of an iterated block cipher. It consists of steps that combine the data with portions of the key.

The RC algorithms are a set of symmetric-key encryption algorithms invented by Ron Rivest. The "RC" may stand for either Rivest's cipher or, more informally, Ron's code. Despite the similarity in their names, the algorithms are for the most part unrelated. There have been six RC algorithms so far:

<span class="mw-page-title-main">Cryptography</span> Practice and study of secure communication techniques

Cryptography, or cryptology, is the practice and study of techniques for secure communication in the presence of adversarial behavior. More generally, cryptography is about constructing and analyzing protocols that prevent third parties or the public from reading private messages. Modern cryptography exists at the intersection of the disciplines of mathematics, computer science, information security, electrical engineering, digital signal processing, physics, and others. Core concepts related to information security are also central to cryptography. Practical applications of cryptography include electronic commerce, chip-based payment cards, digital currencies, computer passwords, and military communications.

The following outline is provided as an overview of and topical guide to cryptography:

Yiqun Lisa Yin is a Chinese-American cryptographer and independent security consultant. Yin is known for breaking the SHA-1 cryptographic hash function, for developing the RC6 block cipher, and for her service as editor of the IEEE P1363 project for the standardization of public-key cryptography.

References

↑ Hoang, Viet Tung; Rogaway, Phillip (2010). "On Generalized Feistel Networks". LNCS 6223. CRYPTO 2010. USA: Springer. pp. 613–630. doi: 10.1007/978-3-642-14623-7_33 .
↑ "Confirmed: hacking tool leak came from "omnipotent" NSA-tied group". Ars Technica. August 16, 2016.
↑ "These instructions guide the INSTALLATION of BLATSTING using ELIGIBLEBACHELOR via NOPEN tunnel". GitHub . Retrieved 2016-08-16.
↑ "3.6.4 What are RC5 and RC6?". RSA Laboratories. Archived from the original on 2017-07-06. Retrieved 2015-08-02.

Bibliography

Pavan, R.L.; Robshaw, M.J.B.; Sidney, R.; Yin., Y.L. (1998-08-20). "The RC6 Block Cipher" (PDF). v1.1. Archived from the original (PDF) on 2018-12-23. Retrieved 2015-08-02.

Beuchat, Jean-Luc. "FPGA Implementations of the RC6 Block Cipher" (PDF). Archived from the original (PDF) on 2006-05-05.

Thompson, Iain (2013-12-31). "How the NSA hacks PCs, phones, routers, hard disks 'at speed of light': Spy tech catalog leaks". The Register . Retrieved 2015-08-02.

External links

"Cryptography - 256 bit Ciphers: Reference source code and submissions to international cryptographic designs contests".

"Symmetric Ciphers: RC6". Standard Cryptographic Algorithm Naming (SCAN). 2009-04-15.

"RC6® Block Cipher". RSA Laboratories. Archived from the original on 2016-03-04.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] Hoang, Viet Tung; Rogaway, Phillip (2010). "On Generalized Feistel Networks". LNCS 6223. CRYPTO 2010. USA: Springer. pp. 613–630. doi: 10.1007/978-3-642-14623-7_33 .

[2] "Confirmed: hacking tool leak came from "omnipotent" NSA-tied group". Ars Technica. August 16, 2016.

[3] "These instructions guide the INSTALLATION of BLATSTING using ELIGIBLEBACHELOR via NOPEN tunnel". GitHub . Retrieved 2016-08-16.

[4] "3.6.4 What are RC5 and RC6?". RSA Laboratories. Archived from the original on 2017-07-06. Retrieved 2015-08-02.

[1]

[2]

[3]

[4]

RC6

Contents