Paper 2009/113

Attacks on AURORA-512 and the Double-Mix Merkle-Damgaard Transform

Niels Ferguson and Stefan Lucks

Abstract

We analyse the Double-Mix Merkle-Damgaard construction (DMMD) used in the AURORA family of hash functions. We show that DMMD falls short of providing the expected level of security. Specically, we are able to find 2nd pre-images for AURORA-512 in time 2^{291}, and collisions in time 2^{234.4}. A limited-memory variant finds collisions in time 2^{249}.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
hash functionsattack
Contact author(s)
stefan lucks @ uni-weimar de
History
2009-03-11: revised
2009-03-11: received
See all versions
Short URL
https://ia.cr/2009/113
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2009/113,
      author = {Niels Ferguson and Stefan Lucks},
      title = {Attacks on {AURORA}-512 and the Double-Mix Merkle-Damgaard Transform},
      howpublished = {Cryptology {ePrint} Archive, Paper 2009/113},
      year = {2009},
      url = {https://eprint.iacr.org/2009/113}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.