GOST

Alias:

"GOST-28147-89"

Published:

1989

References:

• [Def] GOST, Gosudarstvennyi Standard 28147-89,
• "Cryptographic Protection for Data Processing Systems,"
• Government Committee of the USSR for Standards, 1989 (in Russian).
• [Def, Inf] Bruce Schneier,
• "Section 14.1 GOST,"
• John Wiley & Sons, 1996.
• [Inf] J. Pieprzyk, L. Tombak,
• "Soviet Encryption Algorithm,"
• Preprint 94-10, Department of Computer Science, The University of Wollongong, 1994.
• A chosen key attack against the secret S-boxes of GOST,
• "Comments on Soviet encryption algorithm,"
• Volume 950 of Lecture Notes in Computer Science (A. De Santis, ed.), pp. 433-438. Springer Verlag, 1995.
• [An] C. Charnes, L. O'Connor, J. Pieprzyk, R. Safavi-Naini, Y. Zheng,
• "Further comments on GOST encryption algorithm,"
• "Key-schedule cryptanalysis of IDEA, G-DES, GOST, SAFER, and triple-DES,"
• Springer-Verlag, August 1996.

Parameters:

• byte[][] sboxes [write only, default as given in Applied Cryptography] - the S-boxes to be used by this cipher instance. sboxes[i-1][j] represents the output of S-box i, for an input value j.
• The implementation may or may not copy the contents of arrays used to set this parameter. If any such arrays are subsequently changed, the output of the cipher is undefined (it is therefore the responsibility of the caller to make sure that references to these arrays are not accessible to untrusted code). Setting this parameter will reset the current key and feedback vector, if applicable.
• Key length:
• Block size:8 bytes.

Missing information:

Test vectors.

Security comment:

The paper "