Difference between revisions of "Blue Midnight Wish"
(added "Practical Partial-Collisions on the Compression Function of BMW") |
m (→Building blocks) |
||
| (One intermediate revision by the same user not shown) | |||
| Line 69: | Line 69: | ||
| Type of Analysis || Hash Function Part || Hash Size (n) || Parameters/Variants || Compression Function Calls || Memory Requirements || Reference | | Type of Analysis || Hash Function Part || Hash Size (n) || Parameters/Variants || Compression Function Calls || Memory Requirements || Reference | ||
|- | |- | ||
| − | | partial-collision|| compression function || 256,512 || || 2<sup>32</sup>,2<sup>64</sup> || - || [http://www.di.ens.fr/~leurent/files/BMW_Distinguisher.pdf Leurent ,Thomsen] | + | | partial-collision<sup>(1)</sup>|| compression function || 256,512 || || 2<sup>32</sup>,2<sup>64</sup> || - || [http://www.di.ens.fr/~leurent/files/BMW_Distinguisher.pdf Leurent ,Thomsen] |
|- | |- | ||
| observation|| compression function || all || || || - || [http://cryptography.hyperlink.cz/2009/BMWDecomposition04.pdf Gligoroski,Klima] | | observation|| compression function || all || || || - || [http://cryptography.hyperlink.cz/2009/BMWDecomposition04.pdf Gligoroski,Klima] | ||
| Line 93: | Line 93: | ||
|} | |} | ||
| + | <sup>(1)</sup>The BMW team commented on this partial-collision in [http://ehash.iaik.tugraz.at/uploads/7/7a/CommentNov2010.pdf this note] | ||
| + | |||
| + | |||
<bibtex> | <bibtex> | ||
@misc{bmwAum10, | @misc{bmwAum10, | ||
Latest revision as of 14:59, 6 December 2010
1 The algorithm
- Author(s): Danilo Gligoroski, Vlastimil Klima, Svein Johan Knapskog, Mohamed El-Hadedy, Jørn Amundsen, Stig Frode Mjølsnes
- Website: http://www.q2s.ntnu.no/sha3_nist_competition/start
- NIST submission package:
- round 1: Blue_Midnight_Wish.zip
- round 2: Blue_Midnight_Wish_Round2.zip
Danilo Gligoroski, Vlastimil Klima, Svein Johan Knapskog, Mohamed El-Hadedy, J\orn Amundsen, Stig Frode Mj\olsnes - Cryptographic Hash Function BLUE MIDNIGHT WISH
- ,2009
- http://people.item.ntnu.no/~danilog/Hash/BMW-SecondRound/Supporting_Documentation/BlueMidnightWishDocumentation.pdf
BibtexAuthor : Danilo Gligoroski, Vlastimil Klima, Svein Johan Knapskog, Mohamed El-Hadedy, J\orn Amundsen, Stig Frode Mj\olsnes
Title : Cryptographic Hash Function BLUE MIDNIGHT WISH
In : -
Address :
Date : 2009
Danilo Gligoroski, Vlastimil Klima - A Document describing all modifications made on the Blue Midnight Wish cryptographic hash function before entering the Second Round of SHA-3 hash competition
- ,2009
- http://people.item.ntnu.no/~danilog/Hash/BMW-SecondRound/Supporting_Documentation/Round2Mods.pdf
BibtexAuthor : Danilo Gligoroski, Vlastimil Klima
Title : A Document describing all modifications made on the Blue Midnight Wish cryptographic hash function before entering the Second Round of SHA-3 hash competition
In : -
Address :
Date : 2009
Danilo Gligoroski, Vlastimil Klima, Svein Johan Knapskog, Mohamed El-Hadedy, J\orn Amundsen, Stig Frode Mj\olsnes - Cryptographic Hash Function BLUE MIDNIGHT WISH
- ,2008
- http://people.item.ntnu.no/~danilog/Hash/BMW/Supporting_Documentation/BlueMidnightWishDocumentation.pdf
BibtexAuthor : Danilo Gligoroski, Vlastimil Klima, Svein Johan Knapskog, Mohamed El-Hadedy, J\orn Amundsen, Stig Frode Mj\olsnes
Title : Cryptographic Hash Function BLUE MIDNIGHT WISH
In : -
Address :
Date : 2008
2 Cryptanalysis
We distinguish between two cases: results on the complete hash function, and results on underlying building blocks.
A description of the tables is given here.
Recommended security parameter: Expandrounds1 = 2
2.1 Hash function
Here we list results on the hash function according to the NIST requirements. The only allowed modification is to change the security parameter.
| Type of Analysis | Hash Size (n) | Parameters | Compression Function Calls | Memory Requirements | Reference |
2.2 Building blocks
Here we list results on underlying building blocks, and the hash function modified by other means than the security parameter.
Note that these results assume more direct control or access over some internal variables (aka. free-start, pseudo, compression function, block cipher, or permutation attacks).
| Type of Analysis | Hash Function Part | Hash Size (n) | Parameters/Variants | Compression Function Calls | Memory Requirements | Reference |
| partial-collision(1) | compression function | 256,512 | 232,264 | - | Leurent ,Thomsen | |
| observation | compression function | all | - | Gligoroski,Klima | ||
| observation | compression function | all | - | Gligoroski,Klima | ||
| distinguisher | compression function | 256,512 | 1 | - | Guo,Thomsen | |
| distinguisher | compression function | 512 | changed constant | 2278.2 | - | Nikolić,Pieprzyk,Sokołowski,Steinfeld |
| distinguisher | compression function | 512 | (Round 1) | 2223.5 | - | Nikolić,Pieprzyk,Sokołowski,Steinfeld |
| distinguisher | compression function | 256,512 | 219 | - | Aumasson | |
| observation | hash | 256,512 | - | - | Klima,Susil | |
| pseudo-collision | hash | all | (Round 1) | 23n/8+1 | - | Thomsen |
| pseudo-preimage | hash | all | (Round 1) | 23n/4+1 | - | Thomsen |
| near-collision | compression | all | (Round 1) | example | - | Thomsen |
(1)The BMW team commented on this partial-collision in this note
Gaëtan Leurent, Søren S. Thomsen - Practical Partial-Collisions on the Compression Function of BMW
- ,2010
- http://www.di.ens.fr/~leurent/files/BMW_Distinguisher.pdf
BibtexAuthor : Gaëtan Leurent, Søren S. Thomsen
Title : Practical Partial-Collisions on the Compression Function of BMW
In : -
Address :
Date : 2010
Danilo Gligoroski, Vlastimil Klima - On Blue Midnight Wish Decomposition
- SantaCrypt 2009 pp. 41-51,2010
- http://cryptography.hyperlink.cz/2009/BMWDecomposition04.pdf
BibtexAuthor : Danilo Gligoroski, Vlastimil Klima
Title : On Blue Midnight Wish Decomposition
In : SantaCrypt 2009 -
Address :
Date : 2010
Danilo Gligoroski, Vlastimil Klima - On the Computational Asymmetry of the S-Boxes Present in Blue Midnight Wish Cryptographic Hash
- ICT Innovations 2009 pp. 391-400,2010
- http://cryptography.hyperlink.cz/BMW/BijectionsInBMW03-plain.pdf
BibtexAuthor : Danilo Gligoroski, Vlastimil Klima
Title : On the Computational Asymmetry of the S-Boxes Present in Blue Midnight Wish Cryptographic Hash
In : ICT Innovations 2009 -
Address :
Date : 2010
Jian Guo, Søren S. Thomsen - Distinguishers for the Compression Function of Blue Midnight Wish with Probability 1
- ,2010
- http://www2.mat.dtu.dk/people/S.Thomsen/bmw/bmw-distinguishers.pdf
BibtexAuthor : Jian Guo, Søren S. Thomsen
Title : Distinguishers for the Compression Function of Blue Midnight Wish with Probability 1
In : -
Address :
Date : 2010
Ivica Nikolić, Josef Pieprzyk, Przemysław Sokołowski, Ron Steinfeld - Rotational Cryptanalysis of (Modified) Versions of BMW and SIMD
- ,2010
- https://cryptolux.org/mediawiki/uploads/0/07/Rotational_distinguishers_%28Nikolic%2C_Pieprzyk%2C_Sokolowski%2C_Steinfeld%29.pdf
BibtexAuthor : Ivica Nikolić, Josef Pieprzyk, Przemysław Sokołowski, Ron Steinfeld
Title : Rotational Cryptanalysis of (Modified) Versions of BMW and SIMD
In : -
Address :
Date : 2010
Jean-Philippe Aumasson - Practical distinguisher for the compression function of Blue Midnight Wish
- ,2010
- http://131002.net/data/papers/Aum10.pdf
BibtexAuthor : Jean-Philippe Aumasson
Title : Practical distinguisher for the compression function of Blue Midnight Wish
In : -
Address :
Date : 2010
Vlastimil Klima, Petr Susil - A Note on Linear Approximations of BLUE MIDNIGHT WISH Cryptographic Hash Function
- ,2009
- http://eprint.iacr.org/2009/453.pdf
BibtexAuthor : Vlastimil Klima, Petr Susil
Title : A Note on Linear Approximations of BLUE MIDNIGHT WISH Cryptographic Hash Function
In : -
Address :
Date : 2009
Søren S. Thomsen - Pseudo-cryptanalysis of the Original Blue Midnight Wish
- FSE ,2010
- http://eprint.iacr.org/2009/478.pdf
BibtexAuthor : Søren S. Thomsen
Title : Pseudo-cryptanalysis of the Original Blue Midnight Wish
In : FSE -
Address :
Date : 2010
2.3 Archive
Søren S. Thomsen - Pseudo-cryptanalysis of Blue Midnight Wish
- ,2009
- http://www.mat.dtu.dk/people/S.Thomsen/bmw/bmw-pseudo.pdf
BibtexAuthor : Søren S. Thomsen
Title : Pseudo-cryptanalysis of Blue Midnight Wish
In : -
Address :
Date : 2009
Søren S. Thomsen - A near-collision attack on the Blue Midnight Wish compression function
