Difference between revisions of "SHA-512/384"

Revision as of 07:57, 11 March 2008

Henri Gilbert, Helena Handschuh - Security Analysis of SHA-256 and Sisters

Selected Areas in Cryptography 3006:175-193,2003

Author : Henri Gilbert, Helena Handschuh
Title : Security Analysis of SHA-256 and Sisters
In : Selected Areas in Cryptography -
Address :
Date : 2003

@@ Line 19: / Line 19: @@
 === Collision Attacks ===
+<bibtex>
+@inproceedings{sacryptGilbertH03,
+  author    = {Henri Gilbert and Helena Handschuh},
+  title     = {Security Analysis of SHA-256 and Sisters},
+  booktitle = {Selected Areas in Cryptography},
+  year      = {2003},
+  pages     = {175-193},
+  url        = {http://springerlink.metapress.com/openurl.asp?genre=article{\&}issn=0302-9743{\&}volume=3006{\&}spage=175},
+  editor    = {Mitsuru Matsui and Robert J. Zuccherato},
+  publisher = {Springer},
+  series    = {LNCS},
+  volume    = {3006},
+  isbn      = {3-540-21370-8},
+  abstract  = {This paper studies the security of SHA-256, SHA-384 and SHA-512 against collision attacks and provides some insight into the security properties of the basic building blocks of the structure. It is concluded that neither Chabaud and Joux's attack, nor Dobbertin-style attacks apply. Differential and linear attacks also don't apply on the underlying structure. However we show that slightly simplified versions of the hash functions are surprisingly weak: whenever symmetric constants and initialization values are used throughout the computations, and modular additions are replaced by exclusive or operations, symmetric messages hash to symmetric digests. Therefore the complexity of collision search on these modified hash functions potentially becomes as low as one wishes.},
+}
+</bibtex>
 ----