Open AccessDOI
Analysis and design of symmetric cryptographic algorithms
Reads0
Chats0
TLDR
The first nontrivial preimage attacks on the (reduced) hash function MD5, and on the full HAVAL, and a general framework for distinguishers on symmetric cryptographic algorithms, based on the cube attacks of Dinur and Shamir are presented.Abstract:
This thesis is concerned with the analysis and design of symmetric cryptographic algorithms, with a focus on real-world algorithms. The first part describes original cryptanalysis results, including: The first nontrivial preimage attacks on the (reduced) hash function MD5, and on the full HAVAL. Our results were later improved by Sasaki and Aoki, giving a preimage attack on the full MD5. The best key-recovery attacks so far on reduced versions of the stream cipher Salsa20, selected by the European Network of Excellence ECRYPT as a recommendation for software applications, and one of the two ciphers (with AES) in the NaCl cryptographic library. The academic break of the block cipher MULTI2, used in the Japanese digital-TV standard ISDB. While MULTI2 was designed in 1988, our results are the first analysis of MULTI2 to appear as an international publication. We then present a general framework for distinguishers on symmetric cryptographic algorithms, based on the cube attacks of Dinur and Shamir: our cube testers build on algebraic property-testing algorithms to mount distinguishers on algorithms that possess some efficiently testable structure. We apply cube testers to some well known algorithms: On the compression function of MD6, we distinguish 18 rounds (out of 80) from a random function. On the stream cipher Trivium, we obtain the best distinguisher known so far, reaching 885 rounds out of 1152. On the stream cipher Grain-128, using FPGA devices to run high-complexity attacks, we obtain the best distinguisher known so far, and can conjecture the existence of a shortcut attack on the full Grain-128. These results were presented at FSE 2008, SAC 2008, FSE 2009, and SHARCS 2009. The second part of this thesis presents a new hash function, called BLAKE, which we submitted to the NIST Hash Competition. Besides a complete specification, we report on our implementations of BLAKE in hardware and software, and present a preliminary security analysis. As of August 2009, BLAKE is one of the 14 submissions accepted as Second Round Candidates by NIST, and no attack on BLAKE is known.read more
Citations
More filters
Journal Article
Finding SHA-1 Characteristics: General Results and Applications
TL;DR: In this paper, a two-block collision for 64-step SHA-1 based on a new characteristic is presented, and the expected work factor of a collision search and the needed degrees of freedom for the search are discussed.
Journal Article
Low-degree tests at large distances.
TL;DR: In this paper, the authors define tests of boolean functions which distinguish between linear (or quadratic) polynomials, and functions which are very far, in an appropriate sense, from these polynomial functions.
Journal Article
Preimage Attacks on 3-Pass HAVAL and Step-Reduced MD5
TL;DR: Preimage attacks on 3-pass HAVAL and step-reduced MD5 have been studied in this article, where the authors show that the security margin is not as high as expected.
Testing low-degree polynomials over GF(2)
TL;DR: In this article, the authors describe an efficient randomized algorithm to test if a given binary function f: {0, 1} n →{0,1} is a low-degree polynomial (that is, a sum of low degree monomials).
Posted Content
Slid Pairs in Salsa20 and Trivium.
TL;DR: In this paper, the authors show that initialization and key-stream generation of these ciphers is slidable, i.e. one can find distinct (Key, IV) pairs that produce identical (or closely related) keystreams.
References
More filters
Book
Genetic algorithms in search, optimization, and machine learning
TL;DR: In this article, the authors present the computer techniques, mathematical tools, and research results that will enable both students and practitioners to apply genetic algorithms to problems in many fields, including computer programming and mathematics.
Book
The Art of Computer Programming
TL;DR: The arrangement of this invention provides a strong vibration free hold-down mechanism while avoiding a large pressure drop to the flow of coolant fluid.
Book
Handbook of Applied Cryptography
TL;DR: A valuable reference for the novice as well as for the expert who needs a wider scope of coverage within the area of cryptography, this book provides easy and rapid access of information and includes more than 200 algorithms and protocols.
The Art in Computer Programming
Andrew Hunt,Dave Thomas +1 more
TL;DR: Here the authors haven’t even started the project yet, and already they’re forced to answer many questions: what will this thing be named, what directory will it be in, what type of module is it, how should it be compiled, and so on.
Proceedings ArticleDOI
A fast quantum mechanical algorithm for database search
TL;DR: In this paper, it was shown that a quantum mechanical computer can solve integer factorization problem in a finite power of O(log n) time, where n is the number of elements in a given integer.