Vest Article Index for
Vest 		Articles about
Vest 		Website Links For
Vest 		 

Information About

Vest
  CATEGORIES ABOUT VEST
   
stream ciphers
   
message authentication codes
   
cryptographic hash functions
   
SHOPPER'S DELIGHT
 
Shop For:  
Department
Price Minimum:
Price Maximum:
      



VEST is a hardware-dedicated Stream Cipher which has been submitted to the ESTREAM project. VEST is based on Bijective parallel Nonlinear Feedback Shift Registers (NLPFSRs) assisted by non-linear Residue Number System (RNS) based counters. The four VEST family trees described in the spec are '''VEST-4''', '''VEST-8''', '''VEST-16''', and '''VEST-32'''. VEST ciphers support keys and IV s of variable Sizes and instant re-keying, and all VEST Cipher s release output on every clock cycle. VEST ciphers are designed so that each cipher family generated using a static family key can be efficiently synthesised in hardware. VEST ciphers also double as collision-resistant hashes.

VEST was submitted to the ESTREAM competition by Sean O'Neil , Benjamin Gittins and Howard Landman .

All the VEST variants are covered by patents.


STRUCTURE

VEST ciphers consist of four components: a non-linear counter, a linear counter diffusor, a Bijective non-linear accumulator and a linear output combiner. The RNS counter consists of sixteen NLFSR s with Prime Period lengths, the counter diffusor is a set of 5-to-1 linear combiners with feedback compressing outputs of the 16 counters into 10 bits, the core accumulator is an NLPFSR accepting 10 bits of the counter diffusor as input, and the output combiner is a set of 6-to-1 linear combiners.

The core NLPFSR accumulator in VEST ciphers can be seen as a bijective Substitution-permutation Network constructed using non-linear 6-to-1 feedback functions, one for each bit, all of which are updated simultaneously. It accepts 10 bits as its input. The least significant five bits in the accumulator state are updated by a bijective 5x5 Substitution Box and linearly combined with the first five input bits on each round. The next five accumulator bits are linearly combined with the next five input bits and with a non-linear function of four of the less significant accumulator bits. All other bits in the VEST accumulator state are linearly combined with non-linear functions of five less significant bits stored in the accumulator state on each round. This Substitution operation is followed by a Pseudorandom Permutation of all the bits in the state.


FAMILY KEYING

The four root VEST cipher families are referred to as VEST-4, VEST-8, VEST-16, and VEST-32. Each of the four family trees of VEST ciphers supports family keying to generate other independent cipher families of the same size. The family-keying process is a standard method to generate cipher families with unique substitutions and unique counters with different Period s.


PERFORMANCE

VEST is submitted to the eSTREAM project under the Profile II as designed for "hardware applications with restricted resources such as limited storage, gate count, or power consumption", and shows high speeds in when roughly the same number of Gates are used. The authors' own bitslice implementation claims software speeds comparable to DES or IDEA , that is about 3-4 times slower than the AES.

Initialisation of VEST ciphers with a 128-bit key takes 176 rounds. Loading a 128-bit IV takes 48 rounds.


SECURITY

As of January 2006, there are no known Attacks against any of the VEST ciphers or authentication mechanisms. However, no new design should be fielded for real use until it has survived a period of public scrutiny, and VEST's design is also fairly novel.


EXTERNAL LINKS