Cryptology ePrint Archive: Report 2009/113

Attacks on AURORA-512 and the Double-Mix Merkle-Damgaard Transform

Niels Ferguson and Stefan Lucks

Abstract: We analyse the Double-Mix Merkle-Damgaard construction (DMMD) used in the AURORA family of hash functions. We show that DMMD falls short of providing the expected level of security. Speci cally, we are able to find 2nd pre-images for AURORA-512 in time 2^{291}, and collisions in time 2^{234.4}. A limited-memory variant finds collisions in time 2^{249}.

Category / Keywords: secret-key cryptography / hash functions, attack

Date: received 10 Mar 2009, last revised 11 Mar 2009

Contact author: stefan lucks at uni-weimar de

Available formats: PDF | BibTeX Citation

Version: 20090311:092718 (All versions of this report)

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]