Abstract
We analyse the security of the cryptographic hash function LAKE-256 proposed at FSE 2008 by Aumasson, Meier and Phan. By exploiting non-injectivity of some of the building primitives of LAKE, we show three different collision and near-collision attacks on the compression function. The first attack uses differences in the chaining values and the block counter and finds collisions with complexity 233. The second attack utilizes differences in the chaining values and salt and yields collisions with complexity 242. The final attack uses differences only in the chaining values to yield near-collisions with complexity 299. All our attacks are independent of the number of rounds in the compression function. We illustrate the first two attacks by showing examples of collisions and near-collisions.
| Original language | English |
|---|---|
| Title of host publication | Fast Software Encryption |
| Editors | Orr Dunkelman |
| Number of pages | 415 |
| Volume | 5665 |
| Place of Publication | Berlin / Heidelberg |
| Publisher | Springer |
| Publication date | 2009 |
| Pages | 156-179 |
| DOIs | |
| Publication status | Published - 2009 |
| Event | Fast Software Encryption 2009 - Leuven, Belgium Duration: 22 Feb 2009 → 25 Feb 2009 Conference number: 16 http://www.informatik.uni-trier.de/~ley/db/conf/fse/fse2009.html |
Conference
| Conference | Fast Software Encryption 2009 |
|---|---|
| Number | 16 |
| Country/Territory | Belgium |
| City | Leuven |
| Period | 22/02/2009 → 25/02/2009 |
| Internet address |
| Series | Lecture Notes in Computer Science |
|---|---|
| Number | 5665 |
| ISSN | 0302-9743 |
Keywords
- cryptanalysis
- collision attacks
- LAKE hash family