Cryptanalysis of FORK-256

13 years 11 months ago

Download web.science.mq.edu.au

In this paper we present a cryptanalysis of a new 256-bit hash function, FORK-256, proposed by Hong et al. at FSE 2006. This cryptanalysis is based on some unexpected diﬀerentials existing for the step transformation. We show their possible uses in diﬀerent attack scenarios by giving a 1-bit (resp. 2-bit) near collision attack against the full compression function of FORK-256 running with complexity of 2125 (resp. 2120 ) and with negligible memory, and by exhibiting a 22-bit near pseudo-collision. We also show that we can ﬁnd collisions for the full compression function with a small amount of memory with complexity not exceeding 2126.6 hash evaluations. We further show how to reduce this complexity to 2109.6 hash computations by using 273 memory words. Finally, we show that this attack can be extended with no additional cost to ﬁnd collisions for the full hash function, i.e. with the predeﬁned IV.

Krystian Matusiewicz, Thomas Peyrin, Olivier Bille

Real-time Traffic

256-bit Hash Function | Compression Function | Cryptography | FSE 2007 | Hash Function |

claim paper

» A MeetintheMiddle Collision Attack Against the New FORK256

Post Info
More Details (n/a)

Added	07 Jun 2010
Updated	07 Jun 2010
Type	Conference
Year	2007
Where	FSE
Authors	Krystian Matusiewicz, Thomas Peyrin, Olivier Billet, Scott Contini, Josef Pieprzyk

Comments (0)

Sciweavers

Cryptanalysis of FORK-256

256-bit Hash Function | Compression Function | Cryptography | FSE 2007 | Hash Function |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers