< Terug naar vorige pagina

Publicatie

Internal differential collision attacks on the reduced-round Grøstl-0 hash function

Tijdschriftbijdrage - Tijdschriftartikel

We analyze the Grøstl-0 hash function, that is the version of Grøstl submitted to the SHA-3 competition. This paper extends Peyrin's internal differential strategy, that uses differential paths between the permutations P and Q of Grøstl-0 to construct distinguishers of the compression function. This results in collision attacks and semi-free-start collision attacks on the Grøstl-0 hash function and compression function with reduced rounds. Specifically, we show collision attacks on the Grøstl-0-256 hash function reduced to 5 and 6 out of 10 rounds with time complexities 2 48 and 2 112 and on the Grøstl-0-512 hash function reduced to 6 out of 14 rounds with time complexity 2 183 . Furthermore, we demonstrate semi-free-start collision attacks on the Grøstl-0-256 compression function reduced to 8 rounds and the Grøstl-0-512 compression function reduced to 9 rounds. Finally, we show improved distinguishers for the Grøstl-0-256 permutations with reduced rounds. © 2012 Springer Science+Business Media, LLC.
Tijdschrift: Designs, Codes and Cryptography
ISSN: 0925-1022
Issue: 3
Volume: 70
Pagina's: 251 - 271
Jaar van publicatie:2014
BOF-keylabel:ja
IOF-keylabel:ja
BOF-publication weight:1
CSS-citation score:1
Auteurs:International
Authors from:Government, Higher Education