Difference between revisions of "SIMD"
Mschlaeffer (talk | contribs) m |
(→Building blocks) |
||
| Line 61: | Line 61: | ||
| Type of Analysis || Hash Function Part || Hash Size (n) || Parameters/Variants || Compression Function Calls || Memory Requirements || Reference | | Type of Analysis || Hash Function Part || Hash Size (n) || Parameters/Variants || Compression Function Calls || Memory Requirements || Reference | ||
|- | |- | ||
| − | | || || || || || || | + | | distinguisher || compression function || 512 || full (Round 1) || 5*2<sup>425.28 || - || [http://online.tu-graz.ac.at/tug_online/voe_main2.getvolltext?pDocumentNr=125658 Mendel, Nad] |
|- | |- | ||
|} | |} | ||
| + | |||
| + | |||
| + | <bibtex> | ||
| + | @inproceedings{indocryptMendelN09, | ||
| + | author = {Florian Mendel and | ||
| + | Tomislav Nad}, | ||
| + | title = {A Distinguisher for the Compression Function of SIMD-512}, | ||
| + | booktitle = {INDOCRYPT}, | ||
| + | editor = {Bimal K. Roy and | ||
| + | Nicolas Sendrier}, | ||
| + | publisher = {Springer}, | ||
| + | series = {LNCS}, | ||
| + | year = {2009}, | ||
| + | pages = {219-232}, | ||
| + | volume = {5922}, | ||
| + | url = {http://online.tu-graz.ac.at/tug_online/voe_main2.getvolltext?pDocumentNr=125658}, | ||
| + | } | ||
| + | </bibtex> | ||
Revision as of 11:45, 15 February 2010
1 The algorithm
- Author(s): Gaëtan Leurent, Charles Bouillaguet, Pierre-Alain Fouque
- Website: http://www.di.ens.fr/~leurent/simd.html
- NIST submission package:
- round 1: SIMDUpdate.zip (old version: SIMD.zip)
- round 2: SIMD_Round2.zip
Gaëtan Leurent, Charles Bouillaguet, Pierre-Alain Fouque - SIMD Is a Message Digest
- ,2009
- http://www.di.ens.fr/~leurent/files/SIMD.pdf
BibtexAuthor : Gaëtan Leurent, Charles Bouillaguet, Pierre-Alain Fouque
Title : SIMD Is a Message Digest
In : -
Address :
Date : 2009
Gaëtan Leurent, Charles Bouillaguet, Pierre-Alain Fouque - SIMD Is a Message Digest
- ,2008
- http://ehash.iaik.tugraz.at/uploads/4/4e/Simd.pdf
BibtexAuthor : Gaëtan Leurent, Charles Bouillaguet, Pierre-Alain Fouque
Title : SIMD Is a Message Digest
In : -
Address :
Date : 2008
2 Cryptanalysis
We distinguish between two cases: results on the complete hash function, and results on underlying building blocks.
A description of the tables is given here.
2.1 Hash function
Here we list results on the actual hash function. The only allowed modification is to change the security parameter.
Recommended security parameter: 2.k=2.16 steps
| Type of Analysis | Hash Size (n) | Parameters | Compression Function Calls | Memory Requirements | Reference |
2.2 Building blocks
Here we list results on underlying building blocks, and the hash function modified by other means than the security parameter.
Note that these results assume more direct control or access over some internal variables (aka. free-start, pseudo, compression function, block cipher, or permutation attacks).
| Type of Analysis | Hash Function Part | Hash Size (n) | Parameters/Variants | Compression Function Calls | Memory Requirements | Reference |
| distinguisher | compression function | 512 | full (Round 1) | 5*2425.28 | - | Mendel, Nad |
Florian Mendel, Tomislav Nad - A Distinguisher for the Compression Function of SIMD-512
