Error linear complexity measures for multisequences

Complexity measures for sequences over finite fields, such as the linear complexity and the k-error linear complexity, play an important role in cryptology. Recent developments in stream ciphers point towards an interest in word-based stream ciphers, which require the study of the complexity of multisequences. We introduce various options for error linear complexity measures for multisequences. For finite multisequences as well as for periodic multisequences with prime period, we present formulas for the number of multisequences with given error linear complexity for several cases, and we present lower bounds for the expected error linear complexity

Studies on error linear complexity measures for multisequences

Ph.DDOCTOR OF PHILOSOPH

ANALYSIS OF SECURITY MEASURES FOR SEQUENCES

Stream ciphers are private key cryptosystems used for security in communication and data transmission systems. Because they are used to encrypt streams of data, it is necessary for stream ciphers to use primitives that are easy to implement and fast to operate. LFSRs and the recently invented FCSRs are two such primitives, which give rise to certain security measures for the cryptographic strength of sequences, which we refer to as complexity measures henceforth following the convention. The linear (resp. N-adic) complexity of a sequence is the length of the shortest LFSR (resp. FCSR) that can generate the sequence. Due to the availability of shift register synthesis algorithms, sequences used for cryptographic purposes should have high values for these complexity measures. It is also essential that the complexity of these sequences does not decrease when a few symbols are changed. The k-error complexity of a sequence is the smallest value of the complexity of a sequence obtained by altering k or fewer symbols in the given sequence. For a sequence to be considered cryptographically ‘strong’ it should have both high complexity and high error complexity values. An important problem regarding sequence complexity measures is to determine good bounds on a specific complexity measure for a given sequence. In this thesis we derive new nontrivial lower bounds on the k-operation complexity of periodic sequences in both the linear and N-adic cases. Here the operations considered are combinations of insertions, deletions, and substitutions. We show that our bounds are tight and also derive several auxiliary results based on them. A second problem on sequence complexity measures useful in the design and analysis of stream ciphers is to determine the number of sequences with a given fixed (error) complexity value. In this thesis we address this problem for the k-error linear complexity of 2n-periodic binary sequences. More specifically: 1. We characterize 2n-periodic binary sequences with fixed 2- or 3-error linear complexity and obtain the counting function for the number of such sequences with fixed k-error linear complexity for k = 2 or 3. 2. We obtain partial results on the number of 2n-periodic binary sequences with fixed k-error linear complexity when k is the minimum number of changes required to lower the linear complexity

On the nonlinearity of idempotent quadratic functions and the weight distribution of subcodes of Reed-Muller codes

International audienceThe Walsh transform \hat{Q} of a quadratic function Q : F2^n → F2 satisfies |\hat{Q(b)}| ∈ {0, 2 n+s 2 } for all b ∈ F_{2^n} , where 0 ≤ s ≤ n − 1 is an integer depending on Q. In this article, we investigate two classes of such quadratic Boolean functions which attracted a lot of research interest. For arbitrary integers n we determine the distribution of the parameter s for both of the classes, C1 = {Q(x) = Tr_n(\sum^{(n−1)/2}_{ i=1} a_ix^{2^i +1}) : a_i ∈ F2}, and the larger class C2, defined for even n as C2 = {Q(x) = Tr_n(^{(n/2)−1}_ { i=1} a_ix^{2^i +1}) + Tr_n/2 (a_{n/2} x^{2^n/2 +1}) : a_i ∈ F2}. Our results have two main consequences. We obtain the distribution of the non-linearity for the rotation symmetric quadratic Boolean functions, which have been attracting considerable attention recently. We also present the complete weight distribution of the corresponding subcodes of the second order Reed-Muller codes

Idempotent and p-potent quadratic functions: distribution of nonlinearity and co-dimension

The Walsh transform QˆQ^ of a quadratic function Q:Fpn→FpQ:Fpn→Fp satisfies |Qˆ(b)|∈{0,pn+s2}|Q^(b)|∈{0,pn+s2} for all b∈Fpnb∈Fpn , where 0≤s≤n−10≤s≤n−1 is an integer depending on Q. In this article, we study the following three classes of quadratic functions of wide interest. The class C1C1 is defined for arbitrary n as C1={Q(x)=Trn(∑⌊(n−1)/2⌋i=1aix2i+1):ai∈F2}C1={Q(x)=Trn(∑i=1⌊(n−1)/2⌋aix2i+1):ai∈F2} , and the larger class C2C2 is defined for even n as C2={Q(x)=Trn(∑(n/2)−1i=1aix2i+1)+Trn/2(an/2x2n/2+1):ai∈F2}C2={Q(x)=Trn(∑i=1(n/2)−1aix2i+1)+Trn/2(an/2x2n/2+1):ai∈F2} . For an odd prime p, the subclass DD of all p-ary quadratic functions is defined as D={Q(x)=Trn(∑⌊n/2⌋i=0aixpi+1):ai∈Fp}D={Q(x)=Trn(∑i=0⌊n/2⌋aixpi+1):ai∈Fp} . We determine the generating function for the distribution of the parameter s for C1,C2C1,C2 and DD . As a consequence we completely describe the distribution of the nonlinearity for the rotation symmetric quadratic Boolean functions, and in the case p>2p>2 , the distribution of the co-dimension for the rotation symmetric quadratic p-ary functions, which have been attracting considerable attention recently. Our results also facilitate obtaining closed formulas for the number of such quadratic functions with prescribed s for small values of s, and hence extend earlier results on this topic. We also present the complete weight distribution of the subcodes of the second order Reed–Muller codes corresponding to C1C1 and C2C2 in terms of a generating function