CubeHash

From The ECRYPT Hash Function Website

Jump to: navigation, search

Contents

[edit]

1 The algorithm


Daniel J. Bernstein - CubeHash specification (2.B.1)
Submission to NIST (Round 2), 2009
[Electronic Edition] [Bibtex]
Author : Daniel J. Bernstein
Title : CubeHash specification (2.B.1)
In : Submission to NIST (Round 2) -

Daniel J. Bernstein - CubeHash parameter tweak: 16 times faster
Available online, 2009
[Electronic Edition] [Bibtex]
Author : Daniel J. Bernstein
Title : CubeHash parameter tweak: 16 times faster
In : Available online -

Daniel J. Bernstein - CubeHash Specification (2.B.1)
Submission to NIST (Round 1), 2008
[Electronic Edition] [Bibtex]
Author : Daniel J. Bernstein
Title : CubeHash Specification (2.B.1)
In : Submission to NIST (Round 1) -


[edit]

2 Cryptanalysis

We distinguish between two cases: results on the complete hash function, and results on underlying building blocks.

A description of the tables is given here.


[edit]

2.1 Hash function

Here we list results on the hash function according to the NIST requirements. The only allowed modification is to change the security parameter.

Recommended security parameters: r/b = 16/32 (n=224,256); 16/1 (n=384,512)

Type of Analysis Hash Size (n) Parameters/Variants Compression Function Calls Memory Requirements Reference
collision 512 7/64 2203 - Brier,Khazaei,Meier,Peyrin
collision all 4/48 example (237) - Brier,Khazaei,Meier,Peyrin
collision all 4/64 example (234) - Brier,Khazaei,Meier,Peyrin
collision all 3/64 example (224) - Brier,Khazaei,Meier,Peyrin
collision 512 2/2 2196 - Brier,Khazaei,Meier,Peyrin
collision 512 5/64 2231 - Brier,Peyrin
collision all 3/64 289 - Brier,Peyrin
collision 512 4/3 2207 - Brier,Peyrin
collision 384,512 4/4 2189 - Brier,Peyrin
collision all 2/3 246 - Brier,Peyrin
collision 512 2/4 example - Brier,Peyrin
collision 512 1/45, 2/89 example - Dai
collision 512 2/120 example - Aumasson
preimage 512 r/8 2480 - Khovratovich,Nikolic',Weinmann
preimage 512 r/4 2496 - Khovratovich,Nikolic',Weinmann
preimage 512 2511 2508 Khovratovich,Nikolic',Weinmann
preimage all 2513-4b - Aumasson,Meier,Naya-Plasencia,Peyrin
collision all 2521-4b-log b - submission document
preimage all 2522-4b-log b - submission document


[edit]

2.2 Building blocks

Here we list results on underlying building blocks, and the hash function modified by other means than the security parameter.

Note that these results assume more direct control or access over some internal variables (aka. free-start, pseudo, compression function, block cipher, or permutation attacks).

Recommended security parameters: r/b = 16/32 (n=224,256); 16/1 (n=384,512)

Type of Analysis Hash Function Part Hash Size (n) Parameters/Variants Compression Function Calls Memory Requirements Reference
observations hash all Bloom,Kaminsky
multi-collision hash all 2513-4b - Aumasson,Meier,Naya-Plasencia,Peyrin
observations permutation all Aumasson,Meier,Naya-Plasencia,Peyrin


Benjamin Bloom, Alan Kaminsky - Single Block Attacks and Statistical Tests on CubeHash
Cryptology ePrint Archive, Report 2009/407, 2009
[Bibtex]
Author : Benjamin Bloom, Alan Kaminsky
Title : Single Block Attacks and Statistical Tests on CubeHash
In : Cryptology ePrint Archive, Report 2009/407 -
[Abstract]

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Linearization Framework for Collision Attacks: Application to CubeHash and MD6
Cryptology ePrint Archive, Report 2009/382, 2009
[Electronic Edition] [Bibtex]
Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Linearization Framework for Collision Attacks: Application to CubeHash and MD6
In : Cryptology ePrint Archive, Report 2009/382 -
[Abstract]

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Real Collisions for CubeHash-4/48
NIST mailing list (local link), 2009
[Electronic Edition] [Bibtex]
Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Real Collisions for CubeHash-4/48
In : NIST mailing list (local link) -

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Real Collisions for CubeHash-4/64
NIST mailing list (local link), 2009
[Electronic Edition] [Bibtex]
Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Real Collisions for CubeHash-4/64
In : NIST mailing list (local link) -

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Attack for CubeHash-2/2 and collision for CubeHash-3/64
NIST mailing list (local link), 2009
[Electronic Edition] [Bibtex]
Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Attack for CubeHash-2/2 and collision for CubeHash-3/64
In : NIST mailing list (local link) -

Eric Brier, Thomas Peyrin - Cryptanalysis of CubeHash
Available online, 2009
[Electronic Edition] [Bibtex]
Author : Eric Brier, Thomas Peyrin
Title : Cryptanalysis of CubeHash
In : Available online -
[Abstract]

Wei Dai - Collisions for CubeHash1/45 and CubeHash2/89
Available online, 2008
[Electronic Edition] [Bibtex]
Author : Wei Dai
Title : Collisions for CubeHash1/45 and CubeHash2/89
In : Available online -
[Abstract]

Jean-Philippe Aumasson - Collision for CubeHash2/120-512
NIST mailing list (local link), 2008
[Electronic Edition] [Bibtex]
Author : Jean-Philippe Aumasson
Title : Collision for CubeHash2/120-512
In : NIST mailing list (local link) -

Dmitry Khovratovich, Ivica Nikolic', Ralf-Philipp Weinmann - Preimage attack on CubeHash512-r/4 and CubeHash512-r/8
Available online, 2008
[Electronic Edition] [Bibtex]
Author : Dmitry Khovratovich, Ivica Nikolic', Ralf-Philipp Weinmann
Title : Preimage attack on CubeHash512-r/4 and CubeHash512-r/8
In : Available online -

Jean-Philippe Aumasson, Eric Brier, Willi Meier, María Naya-Plasencia, Thomas Peyrin - Inside the Hypercube
In Proceedings of ACISP, LNCS 5594, pp. 202-213, Springer, 2009
[Electronic Edition] [Bibtex]
Author : Jean-Philippe Aumasson, Eric Brier, Willi Meier, María Naya-Plasencia, Thomas Peyrin
Title : Inside the Hypercube
In : In Proceedings of ACISP -
[Abstract]
Retrieved from "http://ehash.iaik.tugraz.at/wiki/CubeHash"
Personal tools