Practical pseudo-collisions for hash functions ARIRANG-224/384

Practical pseudo-collisions for hash functions ARIRANG-224/384

In this paper we analyse the security of the SHA-3 candidate ARIRANG. We show that bitwise complementation of whole registers turns out to be very useful for constructing high-probability differential characteristics in the function. We use this approach to find near-collisions with Hamming weight 3...

Full description

Saved in:
Bibliographic Details
Main Authors: Guo, Jian, Matusiewicz, Krystian, Knudsen, Lars R., Ling, San, Wang, Huaxiong
Other Authors: School of Physical and Mathematical Sciences
Format: Article
Language:English
Published: 2012
Subjects:
DRNTU::Science::Mathematics
Online Access:https://hdl.handle.net/10356/94159
http://hdl.handle.net/10220/7715
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Nanyang Technological University
Language: English
id sg-ntu-dr.10356-94159
record_format dspace
spelling sg-ntu-dr.10356-941592023-02-28T19:38:53Z Practical pseudo-collisions for hash functions ARIRANG-224/384 Guo, Jian Matusiewicz, Krystian Knudsen, Lars R. Ling, San Wang, Huaxiong School of Physical and Mathematical Sciences DRNTU::Science::Mathematics In this paper we analyse the security of the SHA-3 candidate ARIRANG. We show that bitwise complementation of whole registers turns out to be very useful for constructing high-probability differential characteristics in the function. We use this approach to find near-collisions with Hamming weight 32 for the full compression function as well as collisions for the compression function of ARIRANG reduced to 26 rounds, both with complexity close to 20 and memory requirements of only a few words.We use near collisions for the compression function to construct pseudo-collisions for the complete hash functions ARIRANG-224 and ARIRANG-384 with complexity 223 and close to 20, respectively.We implemented the attacks and provide examples of appropriate pairs of H,M values. We also provide possible configurations which may give collisions for step-reduced and full ARIRANG. Accepted version 2012-04-11T03:15:03Z 2019-12-06T18:51:45Z 2012-04-11T03:15:03Z 2019-12-06T18:51:45Z 2009 2009 Journal Article Guo, J., Matusiewicz, K., Knudsen, L.R., Ling, S., & Wang, H. (2009). Practical pseudo-collisions for hash functions ARIRANG-224/384. Lecture notes in computer science, 5867, 141-156. https://hdl.handle.net/10356/94159 http://hdl.handle.net/10220/7715 10.1007/978-3-642-05445-7_9 en Lecture notes in computer science © Springer-Verlag Berlin Heidelberg 2009. This is the author created version of a work that has been peer reviewed and accepted for publication by Lecture Notes in Computer Science, Springer-Verlag Berlin Heidelberg. It incorporates referee’s comments but changes resulting from the publishing process, such as copyediting, structural formatting, may not be reflected in this document. The published version is available at: http://dx.doi.org/10.1007/978-3-642-05445-7_9. 18 p. application/pdf
institution Nanyang Technological University
building NTU Library
continent Asia
country Singapore
Singapore
content_provider NTU Library
collection DR-NTU
language English
topic DRNTU::Science::Mathematics
spellingShingle DRNTU::Science::Mathematics
Guo, Jian
Matusiewicz, Krystian
Knudsen, Lars R.
Ling, San
Wang, Huaxiong
Practical pseudo-collisions for hash functions ARIRANG-224/384
description In this paper we analyse the security of the SHA-3 candidate ARIRANG. We show that bitwise complementation of whole registers turns out to be very useful for constructing high-probability differential characteristics in the function. We use this approach to find near-collisions with Hamming weight 32 for the full compression function as well as collisions for the compression function of ARIRANG reduced to 26 rounds, both with complexity close to 20 and memory requirements of only a few words.We use near collisions for the compression function to construct pseudo-collisions for the complete hash functions ARIRANG-224 and ARIRANG-384 with complexity 223 and close to 20, respectively.We implemented the attacks and provide examples of appropriate pairs of H,M values. We also provide possible configurations which may give collisions for step-reduced and full ARIRANG.
author2 School of Physical and Mathematical Sciences
author_facet School of Physical and Mathematical Sciences
Guo, Jian
Matusiewicz, Krystian
Knudsen, Lars R.
Ling, San
Wang, Huaxiong
format Article
author Guo, Jian
Matusiewicz, Krystian
Knudsen, Lars R.
Ling, San
Wang, Huaxiong
author_sort Guo, Jian
title Practical pseudo-collisions for hash functions ARIRANG-224/384
title_short Practical pseudo-collisions for hash functions ARIRANG-224/384
title_full Practical pseudo-collisions for hash functions ARIRANG-224/384
title_fullStr Practical pseudo-collisions for hash functions ARIRANG-224/384
title_full_unstemmed Practical pseudo-collisions for hash functions ARIRANG-224/384
title_sort practical pseudo-collisions for hash functions arirang-224/384
publishDate 2012
url https://hdl.handle.net/10356/94159
http://hdl.handle.net/10220/7715
_version_ 1759858381945831424

Similar Items