Search by date:
1998
|
1999
|
2000
|
2001
|
2002
|
2003
|
2004
|
2005
|
2006
|
2007
|
2008
|
2009
|
2010
|
2011
|
2012
| Forthcoming
If you wish to be informed about our seminars by email,
please contact Iwen Coisel or François-Xavier Standaert .
Seminars for the year 2012
February 2012
February 23, 14:00 - Boomerang attacks against ARX hash functions
by Dr. Gaëtan Leurent
| Date: | February 23, 2012 - 14:00 |
| Location: | Auditoire Euler, 002, Euler Building (near Maxwell Building)
Avenue Georges Lemaître, 4-6 - 1348 Louvain-la-Neuve |
| Abstract: | In this work we study differential attacks -- and in particular
boomerang attacks -- against ARX-based hash functions such as Blake and
Skein. ARX designs are quite popular, but analysis of these schemes is
hard because differentials path must be constructed and verified at the
bit level.
The first part of the talk will describe an improvement to boomerang
attacks when used in the context of hash functions. We present a new
way to combine message modifications, or auxiliary differentials, with
the boomerang attack. We show that under some conditions, we can
combine three independent paths instead of two for the classical
boomerang attack. This leads to a semi-practical distinguisher for the
compression function of Skein-256 (reduced to 32 rounds), and for the
inner permutation of Blake-256 (reduced to 8 rounds).
In the second part of the talk, we study the details of differential
paths. We describe some techniques to compute constraints that must be
satisfied by the messages and show that many previous results are based
on paths that are not satisfiable. For our new attacks, the paths have
been verified by building actual messages, since the complexity is low
enough. |
See also:
