CubeHash
From The ECRYPT Hash Function Website
Contents |
1 The algorithm
- Author(s): Dan Bernstein
- Website: http://cubehash.cr.yp.to/
- NIST submission package:
- round 1: CubeHash.zip
- round 2: CubeHash_Round2.zip
- Submission to NIST (Round 2), 2009
- [Electronic Edition] [Bibtex] Author : Daniel J. Bernstein
Title : CubeHash specification (2.B.1)
In : Submission to NIST (Round 2) -
Daniel J. Bernstein - CubeHash parameter tweak: 16 times faster
- Available online, 2009
- [Electronic Edition] [Bibtex] Author : Daniel J. Bernstein
Title : CubeHash parameter tweak: 16 times faster
In : Available online -
Daniel J. Bernstein - CubeHash Specification (2.B.1)
- Submission to NIST (Round 1), 2008
- [Electronic Edition] [Bibtex] Author : Daniel J. Bernstein
Title : CubeHash Specification (2.B.1)
In : Submission to NIST (Round 1) -
2 Cryptanalysis
We distinguish between two cases: results on the complete hash function, and results on underlying building blocks.
A description of the tables is given here.
Recommended security parameters: r/b = 16/32 (n=224,256); 16/32 (n=384,512)
2.1 Hash function
Here we list results on the hash function according to the NIST requirements. The only allowed modification is to change the security parameter.
| Type of Analysis | Hash Size (n) | Parameters/Variants | Compression Function Calls | Memory Requirements | Reference |
| preimage | 384,512 | r/32 | 2383.7 | - | Ferguson,Lucks,McKay |
| preimage | 384,512 | r/33 | 2257.6 | - | Ferguson,Lucks,McKay |
| collision | 512 | 7/64 | 2203 | - | Brier,Khazaei,Meier,Peyrin |
| collision | all | 4/48 | example (237) | - | Brier,Khazaei,Meier,Peyrin |
| collision | all | 4/64 | example (234) | - | Brier,Khazaei,Meier,Peyrin |
| collision | all | 3/64 | example (224) | - | Brier,Khazaei,Meier,Peyrin |
| collision | 512 | 2/2 | 2196 | - | Brier,Khazaei,Meier,Peyrin |
| collision | 512 | 5/64 | 2231 | - | Brier,Peyrin |
| collision | all | 3/64 | 289 | - | Brier,Peyrin |
| collision | 512 | 4/3 | 2207 | - | Brier,Peyrin |
| collision | 384,512 | 4/4 | 2189 | - | Brier,Peyrin |
| collision | all | 2/3 | 246 | - | Brier,Peyrin |
| collision | 512 | 2/4 | example | - | Brier,Peyrin |
| collision | 512 | 1/45, 2/89 | example | - | Dai |
| collision | 512 | 2/120 | example | - | Aumasson |
| preimage | 512 | r/8 | 2480 | - | Khovratovich,Nikolic',Weinmann |
| preimage | 512 | r/4 | 2496 | - | Khovratovich,Nikolic',Weinmann |
| preimage | 512 | r/1 (round 1) | 2511 | 2508 | Khovratovich,Nikolic',Weinmann |
| preimage | all | r/b | 2513-4b | - | Aumasson,Meier,Naya-Plasencia,Peyrin |
| collision | all | r/b | 2521-4b-log b | - | submission document |
| preimage | all | r/b | 2522-4b-log b | - | submission document |
2.2 Building blocks
Here we list results on underlying building blocks, and the hash function modified by other means than the security parameter.
Note that these results assume more direct control or access over some internal variables (aka. free-start, pseudo, compression function, block cipher, or permutation attacks).
| Type of Analysis | Hash Function Part | Hash Size (n) | Parameters/Variants | Compression Function Calls | Memory Requirements | Reference |
| quantum preimage | hash | 512 | 2192 | - | Leurent | |
| distinguisher | permutation | all | 14 rounds | 2812 | - | Ashur,Dunkelman |
| distinguisher | permutation | all | 11 rounds | 2470 | - | Ashur,Dunkelman |
| observations | hash | all | - | - | Kaminsky | |
| observations | hash | all | - | - | Bloom,Kaminsky | |
| multi-collision | hash | all | 2513-4b | - | Aumasson,Meier,Naya-Plasencia,Peyrin | |
| observations | permutation | all | - | - | Aumasson,Meier,Naya-Plasencia,Peyrin |
- Cryptology ePrint Archive, Report 2010/506, 2010
- [Electronic Edition] [Bibtex] Author : Gaëtan Leurent
Title : Quantum Preimage and Collision Attacks on CubeHash
In : Cryptology ePrint Archive, Report 2010/506 -
Tomer Ashur, Orr Dunkelman - Linear Analysis of Reduced-Round CubeHash
- Cryptology ePrint Archive, Report 2010/535, 2010
- [Electronic Edition] [Bibtex] Author : Tomer Ashur, Orr Dunkelman
Title : Linear Analysis of Reduced-Round CubeHash
In : Cryptology ePrint Archive, Report 2010/535 -
Niels Ferguson, Stefan Lucks, Kerry A. McKay - Symmetric States and their Structure: Improved Analysis of CubeHash
- Cryptology ePrint Archive, Report 2010/273, 2010
- [Electronic Edition] [Bibtex] Author : Niels Ferguson, Stefan Lucks, Kerry A. McKay
Title : Symmetric States and their Structure: Improved Analysis of CubeHash
In : Cryptology ePrint Archive, Report 2010/273 -
Alan Kaminsky - Cube Test Analysis of the Statistical Behavior of CubeHash and Skein
- Cryptology ePrint Archive, Report 2010/262, 2010
- [Electronic Edition] [Bibtex] Author : Alan Kaminsky[Abstract]
Title : Cube Test Analysis of the Statistical Behavior of CubeHash and Skein
In : Cryptology ePrint Archive, Report 2010/262 -
Benjamin Bloom, Alan Kaminsky - Single Block Attacks and Statistical Tests on CubeHash
- Cryptology ePrint Archive, Report 2009/407, 2009
- [Electronic Edition] [Bibtex] Author : Benjamin Bloom, Alan Kaminsky[Abstract]
Title : Single Block Attacks and Statistical Tests on CubeHash
In : Cryptology ePrint Archive, Report 2009/407 -
Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Linearization Framework for Collision Attacks: Application to CubeHash and MD6
- Cryptology ePrint Archive, Report 2009/382, 2009
- [Electronic Edition] [Bibtex] Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin[Abstract]
Title : Linearization Framework for Collision Attacks: Application to CubeHash and MD6
In : Cryptology ePrint Archive, Report 2009/382 -
Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Real Collisions for CubeHash-4/48
- NIST mailing list (local link), 2009
- [Electronic Edition] [Bibtex] Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Real Collisions for CubeHash-4/48
In : NIST mailing list (local link) -
Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Real Collisions for CubeHash-4/64
- NIST mailing list (local link), 2009
- [Electronic Edition] [Bibtex] Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Real Collisions for CubeHash-4/64
In : NIST mailing list (local link) -
Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Attack for CubeHash-2/2 and collision for CubeHash-3/64
- NIST mailing list (local link), 2009
- [Electronic Edition] [Bibtex] Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Attack for CubeHash-2/2 and collision for CubeHash-3/64
In : NIST mailing list (local link) -
Eric Brier, Thomas Peyrin - Cryptanalysis of CubeHash
- Available online, 2009
- [Electronic Edition] [Bibtex] Author : Eric Brier, Thomas Peyrin[Abstract]
Title : Cryptanalysis of CubeHash
In : Available online -
Wei Dai - Collisions for CubeHash1/45 and CubeHash2/89
- Available online, 2008
- [Electronic Edition] [Bibtex] Author : Wei Dai[Abstract]
Title : Collisions for CubeHash1/45 and CubeHash2/89
In : Available online -
Jean-Philippe Aumasson - Collision for CubeHash2/120-512
- NIST mailing list (local link), 2008
- [Electronic Edition] [Bibtex] Author : Jean-Philippe Aumasson
Title : Collision for CubeHash2/120-512
In : NIST mailing list (local link) -
Dmitry Khovratovich, Ivica Nikolic', Ralf-Philipp Weinmann - Preimage attack on CubeHash512-r/4 and CubeHash512-r/8
- Available online, 2008
- [Electronic Edition] [Bibtex] Author : Dmitry Khovratovich, Ivica Nikolic', Ralf-Philipp Weinmann
Title : Preimage attack on CubeHash512-r/4 and CubeHash512-r/8
In : Available online -
Jean-Philippe Aumasson, Eric Brier, Willi Meier, María Naya-Plasencia, Thomas Peyrin - Inside the Hypercube
- In Proceedings of ACISP, LNCS 5594, pp. 202-213, Springer, 2009
- [Electronic Edition] [Bibtex] Author : Jean-Philippe Aumasson, Eric Brier, Willi Meier, María Naya-Plasencia, Thomas Peyrin[Abstract]
Title : Inside the Hypercube
In : In Proceedings of ACISP -
