Difference between revisions of "CubeHash"

Revision as of 15:58, 13 August 2009

1 The algorithm

Author(s): Dan Bernstein
Website: http://cubehash.cr.yp.to/
NIST submission package: CubeHash.zip

Daniel J. Bernstein - CubeHash Specification (2.B.1)

,2008

http://cubehash.cr.yp.to/submission/spec.pdf
Bibtex

Author : Daniel J. Bernstein
Title : CubeHash Specification (2.B.1)
In : -
Address :
Date : 2008

2 Cryptanalysis

Type of Analysis	Hash Function Part	Hash Size (n)	Parameters/Variants	Compression Function Calls	Memory Requirements	Reference
preimage	hash	all		2^513-4b	?	Aumasson,Meier,Naya-Plasencia,Peyrin
multi-collision		all		2^513-4b	?	Aumasson,Meier,Naya-Plasencia,Peyrin
observations		all				Aumasson,Meier,Naya-Plasencia,Peyrin
preimage	hash	512		2⁵¹¹	2⁵⁰⁸	Khovratovich,Nikolić,Weinmann
preimage	hash	512	r/4	2⁴⁹⁶	-	Khovratovich,Nikolić,Weinmann
preimage	hash	512	r/8	2⁴⁸⁰	-	Khovratovich,Nikolić,Weinmann
collision	hash	512	2/120	example	-	Aumasson
collision	hash	512	1/45, 2/89	example	-	Dai
collision	hash	512	2/4	example	-	Brier,Peyrin
collision	hash	all	2/3	2⁴⁶	-	Brier,Peyrin
collision	hash	384/512	4/4	2¹⁸⁹	-	Brier,Peyrin
collision	hash	512	4/3	2²⁰⁷	-	Brier,Peyrin
collision	hash	all	3/64	2⁸⁹	-	Brier,Peyrin
collision	hash	512	5/64	2²³¹	-	Brier,Peyrin
collision	hash	512	2/2	2¹⁹⁶	-	Brier,Khazaei,Meier,Peyrin
collision	hash	all	3/64	example (2²⁴)	-	Brier,Khazaei,Meier,Peyrin
collision	hash	all	4/64	example (2³⁴)	-	Brier,Khazaei,Meier,Peyrin
collision	hash	all	4/48	example (2³⁷)	-	Brier,Khazaei,Meier,Peyrin
collision	hash	512	7/64	2²⁰³	-	Brier,Khazaei,Meier,Peyrin

A description of this table is given here.

Jean-Philippe Aumasson, Eric Brier, Willi Meier, María Naya-Plasencia, Thomas Peyrin - Inside the Hypercube

ACISP 5594:202-213,2009

http://www.131002.net/data/papers/ABMNP08.pdf
Bibtex

Author : Jean-Philippe Aumasson, Eric Brier, Willi Meier, María Naya-Plasencia, Thomas Peyrin
Title : Inside the Hypercube
In : ACISP -
Address :
Date : 2009

Dmitry Khovratovich, Ivica Nikolić, Ralf-Philipp Weinmann - Preimage attack on CubeHash512-r/4 and CubeHash512-r/8

,2008

http://ehash.iaik.tugraz.at/uploads/6/6c/Cubehash.pdf
Bibtex

Author : Dmitry Khovratovich, Ivica Nikolić, Ralf-Philipp Weinmann
Title : Preimage attack on CubeHash512-r/4 and CubeHash512-r/8
In : -
Address :
Date : 2008

Jean-Philippe Aumasson - Collision for CubeHash2/120-512

,2008

http://ehash.iaik.tugraz.at/uploads/a/a9/Cubehash.txt
Bibtex

Author : Jean-Philippe Aumasson
Title : Collision for CubeHash2/120-512
In : -
Address :
Date : 2008

Wei Dai - Collisions for CubeHash1/45 and CubeHash2/89

,2008

http://www.cryptopp.com/sha3/cubehash.pdf
Bibtex

Author : Wei Dai
Title : Collisions for CubeHash1/45 and CubeHash2/89
In : -
Address :
Date : 2008

Eric Brier, Thomas Peyrin - Cryptanalysis of CubeHash

,2009

http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf
Bibtex

Author : Eric Brier, Thomas Peyrin
Title : Cryptanalysis of CubeHash
In : -
Address :
Date : 2009

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Attack for CubeHash-2/2 and collision for CubeHash-3/64

,2009

http://ehash.iaik.tugraz.at/uploads/3/3a/Peyrin_ch22_ch364.txt
Bibtex

Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Attack for CubeHash-2/2 and collision for CubeHash-3/64
In : -
Address :
Date : 2009

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Real Collisions for CubeHash-4/64

,2009

http://ehash.iaik.tugraz.at/uploads/9/93/Bkmp_ch464.txt
Bibtex

Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Real Collisions for CubeHash-4/64
In : -
Address :
Date : 2009

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Real Collisions for CubeHash-4/48

,2009

http://ehash.iaik.tugraz.at/uploads/5/50/Bkmp_ch448.txt
Bibtex

Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Real Collisions for CubeHash-4/48
In : -
Address :
Date : 2009

Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin - Linearization Framework for Collision Attacks: Application to CubeHash and MD6

,2009

http://eprint.iacr.org/2009/382.pdf
Bibtex

Author : Eric Brier, Shahram Khazaei, Willi Meier, Thomas Peyrin
Title : Linearization Framework for Collision Attacks: Application to CubeHash and MD6
In : -
Address :
Date : 2009

@@ Line 43: / Line 43: @@
 | collision || hash || all || 2/3 || 2<sup>46</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
 |-
-| collision || hash || all || 4/4 || 2<sup>189</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
+| collision || hash || 384/512 || 4/4 || 2<sup>189</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
 |-
-| collision || hash || all || 4/3 || 2<sup>207</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
+| collision || hash || 512 || 4/3 || 2<sup>207</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
 |-
 | collision || hash || all || 3/64 || 2<sup>89</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
 |-
-| collision || hash || all || 5/64 || 2<sup>231</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
+| collision || hash || 512 || 5/64 || 2<sup>231</sup> || - || [http://thomas.peyrin.googlepages.com/BrierPeyrinCubehash.pdf Brier,Peyrin]
 |-
-| collision || hash || all || 2/2 || 2<sup>196</sup> || - || [http://ehash.iaik.tugraz.at/uploads/3/3a/Peyrin_ch22_ch364.txt Brier,Khazaei,Meier,Peyrin]
+| collision || hash || 512 || 2/2 || 2<sup>196</sup> || - || [http://ehash.iaik.tugraz.at/uploads/3/3a/Peyrin_ch22_ch364.txt Brier,Khazaei,Meier,Peyrin]
 |-
 | collision || hash || all || 3/64 || example (2<sup>24</sup>) || - || [http://ehash.iaik.tugraz.at/uploads/3/3a/Peyrin_ch22_ch364.txt Brier,Khazaei,Meier,Peyrin]
@@ Line 59: / Line 59: @@
 | collision || hash || all || 4/48 || example (2<sup>37</sup>) || - || [http://ehash.iaik.tugraz.at/uploads/5/50/Bkmp_ch448.txt Brier,Khazaei,Meier,Peyrin]
 |-
+| collision || hash || 512 || 7/64 || 2<sup>203</sup> || - || [http://eprint.iacr.org/2009/382.pdf Brier,Khazaei,Meier,Peyrin]
+|-
 |}
@@ Line 168: / Line 170: @@
    howpublished = {NIST mailing list (local link)},
    year = {2009},
+}
+</bibtex>
+<bibtex>
+@misc{cubehashBKMP09b,
+    author = {Eric Brier and Shahram Khazaei and Willi Meier and Thomas Peyrin},
+    title = {Linearization Framework for Collision Attacks: Application to CubeHash and MD6},
+    howpublished = {Cryptology ePrint Archive, Report 2009/382},
+    year = {2009},
+    url = {http://eprint.iacr.org/2009/382.pdf},
+    note = {\url{http://eprint.iacr.org/}},
+    abstract = {In this paper, an improved differential cryptanalysis framework for finding collisions in hash functions is provided. Its principle is based on linearization of compression functions in order to find low weight differential characteristics as initiated by Chabaud and Joux. This is formalized and refined however in several ways: for the problem of finding a conforming message pair whose differential trail follows a linear trail, a condition function is introduced so that finding a collision is equivalent to finding a preimage of the zero vector for the condition function. Then, the dependency table concept shows how much influence every input bit of the condition function has on its output bits. Careful analysis of the dependency table reveals degrees of freedom that can be exploited in accelerated preimage reconstruction of the condition function. These concepts are applied to an in-depth collision analysis of reduced-round versions of the two SHA-3 candidates CubeHash and MD6, and are demonstrated to give by far the best currently known collision attacks on these SHA-3 candidates.},
 }
 </bibtex>

Difference between revisions of "CubeHash"

Revision as of 15:58, 13 August 2009

1 The algorithm

2 Cryptanalysis

Navigation menu

Views

Personal tools

Navigation

Search

Tools