protection [ 2 ]. size;

Data encryption in computer network channels can be implemented at any of the seven levels of the OSI model [ 1 ]. Encryption is more often implemented either at the upper (application) or lower (channel, network) levels of the OSI model. In addition to "useful" information traffic, information about the routing of the message, information about the routing protocol are also encrypted. In this case, the network switch must decrypt the data stream in order to process it correctly. Then the switch encrypts the traffic again for transmission to another network switch. For this reason, «Internet of Things» networks, especially those based on low-power controllers (Arduino, NodeMCU, ESP32), use special methods of information security to protect network traffic. Firewalls are most often used for this purpose. It should be noted that channel encryption in such cases is an effective means of information Despite the high efficiency, channel encryption has disadvantages: – the cost of implementing encryption at the channel level increases sharply with increasing network – the data must be encrypted each time it is transmitted over a network channel.

Trends in the development of cryptographic protection (for example, the hardware implementation in the computing cores of the microprocessor of the AES encryption algorithm [ 3 ]) indicate the prospects for the implementation of block XOR-ciphers. Thus, a large number of means of cryptographic computer protection is implemented in the form of hardware units or devices.

2022 Copyright for this paper by its authors.

Hardware encryption has a higher speed. For example, the RC5 cryptographic algorithm consists of a large number of modulus arithmetic operations that are performed on plaintext bits. However, modern microcontrollers are practically not adapted to perform efficient bit crypto transformations. The creators of the RC5 cryptographic algorithm provided that it could be easily implemented by both hardware and software methods, which allows to protect network traffic for Internet of Things (IoT) technology. Although at the moment firewalls and some other means and technologies of data protection are more often used for this [ 4–7 ]. The algorithms of the RC5 family provide for the division of the message into a certain number of parts of a fixed size. Each of these parts undergoes a separate encryption procedure. This simplifies the encryption task. The given practical capabilities of the RC5 algorithm can confirm that the block symmetric RC5 encryption algorithm has prospects in IoT. It provides prospects for enhancing the quality of encryption and reducing the computational load on the computing mechanisms of microcontrollers [ 3, 8 ].

In their work [ 3 ], the authors of the RC5 crypto algorithm note that the proposed algorithm can be easily implemented in hardware. At the same time, the ways of enhancing its cryptographic power without increasing the computational complexity are also proposed [ 8 ]. This feature of RC5 is important in its application and is a convenient basis for modification [ 3 ]. Although, the classical algorithm is built on one shift function, it can be modified by using several sequentially nonlinear shift functions 2. Analysis of the Principle of Operation and Parameters of the RC5 Algorithm

Some of the main parameters of the RC5 algorithm are variable parameters [ 3, 8 ]. As a basic algorithm for modification, we choose its RC5RA variation [ 10 ]. In it, the cyclic shift occurs by a variable number of bits, which depends on the algorithm round number, determined by a function f (). This function processes all bits of another sub block as an input value. The scheme of cryptographic transformation in rounds of the RC5RA algorithm is shown in Figure 1. In the algorithms of the RC5RA family, in addition to the secret key, there are some others, namely:

– the size of the word w (in bits). The algorithm encrypts blocks of two words (hereinafter referred to as A and B respectively). Valid values of w are natural numbers 16, 32 or 64. The recommended word size is 32 bits; – the number of rounds of the R-algorithm (any integer in the range from 0 to 255 inclusive); – secret key size b (in bytes) – variable value (any integer in the range from 0 to 255 inclusive). When encrypting for two blocks A and B in the binary representation, the RC5 algorithm is executed in such a way that before the first encryption round the operations of superimposing the extended key S on the encrypted data according to expression (1) are performed.

The maximum RC5 key size for RC5 family algorithms is 2040 bits. An example of the formation of the extended key S is given in [ 1 ]. The RC5RA algorithm performs a cryptographic conversion of the kind: +1 = (( ⊕ ) << (⋅)) + 2 , +1 = (( ⊕ ) << (⋅)) + 2 +1. (1) The proposed approach to improvement involves not so much a modification of the algorithm, but an increase in its crypto resistance by choosing the nonlinear shift functions used in (1). This function, in turn, is the basis for modifying the algorithm. Obviously, the main point for improving the RC5RA is the choice of nonlinear functions of the form ( , ), where the – round key and – number of the round. The using of the following functions is proposed as nonlinear functions: 1) the first shift function: (2) ( , ) = | + [

( where

= 2 – round number;

; – the length of half of the coded block; ∑ ) ]| which is in a bit representation.

[ ] – an integer part of the x number; – is the length of the initial message block (plaintext) in the encryption round; – a binary representation of the symbol Lm encoded by the symbol of the word , the length of *r

K2

K2* r+11 << < << < + + + + f () f () 10 ( ∑ =1 ∑ 2) the second offset function: ( , ) = [ ( − | ( 3) the third offset function: 4) the fourth offset function: ( , ) = ( | ∑ 5) the fifth offset function: .

(6)

The given nonlinear shift functions (2)–(6) have a range of admissible values for the whole period of their existence. This is necessary to form the coefficients in the encryption rounds.

The implementation of a modified algorithm requires test data for encryption. When forming test samples, we will assume that for the RC5 cipher or RC5RA modification there are no confirmed direct relationships between the sizes/multiplicities of the sample text files with open text and the obtained encryption result. And all the more there is no influence of these parameters on crypto resistance of the received encrypted text or emergence of collisions. Files containing only integer data were used for test samples. When encoding graphics and texts using known and current coding systems, we obtain a file in the form of a sequence of integers. Thus, text test datasets are 81 to 1968 kilobytes long, and graphical data sets are 351 to 3412 kilobytes long. Text data are files with English characters. Graphic data is a set of simple images of standard formats, such as the jpg format. Encryption keys are generated using a pseudo-random number generator with modular arithmetic. In this case, the keys are formed immediately in the bit representation. 10 keys are generated for each input data set.

A software application in the Matlab modeling environment was created to determine the parameters of the obtained RC5RA

modification. The program interface provides the ability to change the encryption parameters of the modification of the RC5 algorithm. To test the obtained modification of the RC5RA algorithm and obtain the results of its work, identical data of key parameters, encryption rounds and function numbers of each series of test samples were used. A sequence of different bits (16, 32, 64 bits) was used as the encryption key. The key sequence was generated by a standard built-in of the Matlab programming language congruent pseudo-random number generator.

The results obtained for modifying the RC5RA using the proposed shift functions (2)–(6) for different parameters of the algorithm are shown in Figures 2–5.

Text data encryption 2 c e s , u R 0 2 c e s , e m i t n u 0

Graphical data encryption 1350 1850 2350 2850

3350 32 64

The data in Figures 2–5 are obtained with the classical round shift and the use of the five nonlinear functions proposed above. The results of the work obtained as a result of processing the test samples by the modified RC5RA algorithm are given in Tables 1, 2. Coincidences appear on all used test samples.

The Tables 1, 2 show the obtained time parameters of the modified version of the RC5RA algorithm in the mode of encryption and decryption of graphic information with the number of rounds r = 16 and different values of the w-parameter.

In order to determine the value of crypto resistance of the obtained modification of the RC5RA crypto algorithm using the above-mentioned shift functions, a classical differential analysis was used [ 11–13 ].

The test data set (texts) consisted of the first 5 characters of the Latin alphabet. These specially prepared texts contained 2 and 4 consecutive symbols. A "differential" was calculated for different pairs of texts from this sample. On the basis of the received "differential" the estimation of "differential" of other pairs of encrypted texts was carried out. The model on the basis of which the cryptanalysis of the received texts was carried has the form of (7): ( 5 ) =

The layout of the software interface, which performs cryptanalysis of the obtained modification of RC5RA is shown in Figure 6.

Cryptanalysis was performed with the number of rounds of RC5RA modifications from 10 to 14, as shown in Table 3. The number of plain texts required to hack the modified RC5RA algorithm is estimated.

The result of cryptanalysis of the encrypted text (Table 3) is considered successful when the evaluation of the "differential" receives a limit value of 25%. This means that with a probability of 0.25 with such structure of data, you can open half of the key or the whole key. Based on the results shown in Table 3 (by number of texts), when implementing this algorithm on low-power microcontrollers in IoT technology, the recommended number of rounds should not be less than 11. Otherwise, the crypto resistance index will not be satisfactory [ 13 ].

As a result of the analysis and generalization, the answer to the question of the influence of the nature of the round shift in RC5 on increase of the crypto resistance of this crypto algorithm was partially obtained [ 11 ].

As can be seen in Table 3, the best values of crypto resistance are demonstrated by the modified algorithm for those functions whose variance of output values is most homogeneous. Selection of a "strong" nonlinear shift function for the RC5RA improvement reduces the number of rounds to 10, while the encrypted message will be well protected from differential cryptanalysis. At the same time, the computational complexity of the algorithm implementation remains comparable to the classic version of RC5RA.