Cryptology ePrint Archive: Report 2009/106

A Collision Attack on AURORA-512

Yu Sasaki

Abstract: In this note, we present a collision attack on AURORA-512, which is one of the candidates for SHA-3. The attack complexity is approximately $2^{236}$ AURORA-512 operations, which is less than the birthday bound of AURORA-512, namely, $2^{256}$. Our attack exploits some weakness in the mode of operation.

Category / Keywords: secret-key cryptography / AURORA, DMMD, collision, multi-collision