Reference : Second-Order Differential Collisions for Reduced SHA-256.
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/13070
Second-Order Differential Collisions for Reduced SHA-256.
English
Biryukov, Alex mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Lamberger, Mario [Graz University of Technology, Austria]
Mendel, Florian [Graz University of Technology, Austria]
Nikolic, Ivica [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
2011
17th International Conference on the Theory and Application of Cryptology and Information Security
Springer
270-287
Yes
978-3-642-25384-3
ASIACRYPT'2011
December 4-8, 2011
Seoul
South Korea
[en] Hash functions ; higher-order differentials ; non-randomness ; SHA-256 ; SHACAL-2
[en] In this work, we introduce a new non-random property for hash/compression functions using the theory of higher order differentials. Based on this, we show a second-order differential collision for the compression function of SHA-256 reduced to 47 out of 64 steps with practical complexity. We have implemented the attack and provide an example. Our results suggest that the security margin of SHA-256 is much lower than the security margin of most of the SHA-3 finalists in this setting. The techniques employed in this attack are based on a rectangle/boomerang approach and cover advanced search algorithms for good characteristics and message modification techniques. Our analysis also exposes flaws in all of the previously published related-key rectangle attacks on the SHACAL-2 block cipher, which is based on SHA-256. We provide valid rectangles for 48 steps of SHACAL-2.
http://hdl.handle.net/10993/13070
7073
Lecture Notes in Computer Science
Lect Notes Comput Sci
1611-3349
0302-9743

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
biryukov-second-order-collisons-sha-256.pdfNo commentaryAuthor postprint304.68 kBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.