RC4: Design, Weaknesses & WEP Attacks
Analyze RC4's KSA and PRGA and the biases that broke WEP/TLS.
Welcome
RC4 was the most widely used stream cipher for 20 years — used in WEP, TLS, and SSL. Today it is completely broken. Understanding its failure teaches critical lessons about cryptographic design.
RC4 History
RC4 (Rivest Cipher 4) was designed by Ron Rivest in 1987 for RSA Security. It was kept as a trade secret until 1994 when it was reverse-engineered and published anonymously as 'Alleged RC4' (ARC4).
All lessons in this course
- Stream Cipher Concepts & PRNG
- RC4: Design, Weaknesses & WEP Attacks
- Salsa20 & ChaCha20 Design
- ChaCha20-Poly1305 AEAD in TLS 1.3