Paper 2013/174

Cryptanalysis of Some Double-Block-Length Hash Modes of Block Ciphers with $n$-Bit Block and $n$-Bit Key

Deukjo Hong and Daesung Kwon

Abstract

In this paper, we make attacks on DBL (Double-Block-Length) hash modes of block ciphers with $n$-bit key and $n$-bit block. Our preimage attack on the hash function of MDC-4 scheme requires the time complexity $2^{3n/2}$, which is significantly improved compared to the previous results. Our collision attack on the hash function of MJH scheme has time complexity less than $2^{124}$ for $n = 128$. Our preimage attack on the compression function of MJH scheme find a preimage with time complexity of $2^n$. It is converted to a preimage attack on the hash function with time complexity of $2^{3n/2+2}$. Our preimage attack on the compression function of Mennink's scheme find a preimage with time complexity of $2^{3n/2}$. It is converted to a preimage attack on the hash function with time complexity of $2^{7n/4+1}$. These attacks are helpful for understanding the security of the hash modes together with their security proofs.

Note: Some of described attacks are revised.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
Hash FunctionHash ModeCollisionPreimage
Contact author(s)
hongdj @ ensec re kr
History
2013-04-05: revised
2013-03-30: received
See all versions
Short URL
https://ia.cr/2013/174
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2013/174,
      author = {Deukjo Hong and Daesung Kwon},
      title = {Cryptanalysis of Some Double-Block-Length Hash Modes of Block Ciphers with $n$-Bit Block and $n$-Bit Key},
      howpublished = {Cryptology ePrint Archive, Paper 2013/174},
      year = {2013},
      note = {\url{https://eprint.iacr.org/2013/174}},
      url = {https://eprint.iacr.org/2013/174}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.