Grindahl-256

1 Specification

• Specification: Web page of the Grindahl hash functions

Grindahl-256

• digest size: 256 bits
• max. message length: < 2⁶⁴ bits
• compression function: 32-bit message block, 52 byte state

Lars R. Knudsen, Christian Rechberger, Søren S. Thomsen - The Grindahl Hash Functions

FSE 4593:39-57,2007

http://dx.doi.org/10.1007/978-3-540-74619-5_3
Bibtex

Author : Lars R. Knudsen, Christian Rechberger, Søren S. Thomsen
Title : The Grindahl Hash Functions
In : FSE -
Address :
Date : 2007

2 Cryptanalysis

2.1 Best Known Results

The best collision attack on Grindahl-256 was published by Peyrin. It has complexity of about 2¹¹² hash evaluations. There are no known preimage-style attacks.

2.2 Generic Attacks

• Grindahl is not a design follwing the Merkle-Damgaard construction principle. Generic Attacks on Hash Functions

2.3 Collision Attacks

Thomas Peyrin - Cryptanalysis of Grindahl

ASIACRYPT 4833:551-567,2007

http://dx.doi.org/10.1007/978-3-540-76900-2_34
Bibtex

Author : Thomas Peyrin
Title : Cryptanalysis of Grindahl
In : ASIACRYPT -
Address :
Date : 2007

2.4 Second Preimage Attacks

2.5 Preimage Attacks

2.6 Others