Security analysis of an audio data encryption scheme based on key chaining and DNA encoding
This work exposes critical security flaws in a specific encryption scheme, warning against its use in information security applications.
The paper demonstrates that a recently proposed audio encryption scheme based on key chaining and DNA encoding is highly vulnerable, requiring only two chosen plaintexts of 32 bytes to recover the equivalent key and allowing recovery of the original plaintext through repeated encryptions.
Fairly recently, a new encryption scheme for audio data encryption has been proposed by Naskar, P.K., et al. The cryptosystem is based on substitution-permutation encryption structure using DNA encoding at the substitution stage, in which the key generation is based on a key chaining algorithm that generates new key block for every plain block using a logistic chaotic map. After some several statistical tests done by the authors of the scheme, they claimed that their cryptosystem is robust and can resist conventional cryptanalysis attacks. Negatively, in this paper we show the opposite: the scheme is extremely weak against chosen ciphertext and plaintext attacks thus only two chosen plaintexts of 32 byte size are sufficient to recover the equivalent key used for encryption. The cryptosystem's shuffling process design is vulnerable which allow us recovering the unknown original plaintext by applying repeated encryptions. Our study proves that the scheme is extremely weak and should not be used for any information security or cryptographic concern. Lessons learned from this cryptanalytic paper are then outlined in order to be considered in further designs and proposals.