Practical Attacks on the Maelstrom-0 Compression Function

Stefan Kölbl; Florian Mendel

doi:10.1007/978-3-642-21554-4_26

Practical Attacks on the Maelstrom-0 Compression Function

Stefan Kölbl, Florian Mendel

Graz University of Technology

Research output: Chapter in Book/Report/Conference proceeding › Article in proceedings › Research › peer-review

Abstract

In this paper we present attacks on the compression function of Maelstrom-0. It is based on the Whirlpool hash function standardized by ISO and was designed to be a faster and more robust enhancement. We analyze the compression function and use differential cryptanalysis to construct collisions for reduced variants of the Maelstrom-0 compression function. The attacks presented in this paper are of practical complexity and show significant weaknesses in the construction compared to its predecessor. The methods used are based on recent results in the analysis of AES-based hash functions.

Original language	English
Title of host publication	Applied Cryptography and Network Security : 9th International Conference, ACNS 2011, Nerja, Spain, June 7-10, 2011. Proceedings
Publisher	Springer
Publication date	2011
Pages	449-461
ISBN (Print)	978-3-642-21553-7
ISBN (Electronic)	978-3-642-21554-4
DOIs	https://doi.org/10.1007/978-3-642-21554-4_26
Publication status	Published - 2011
Externally published	Yes
Event	9th International Conference on Applied Cryptography and Network Security (ACNS 2011) - Nerja, Spain Duration: 7 Jun 2011 → 10 Jun 2011

Conference

Conference	9th International Conference on Applied Cryptography and Network Security (ACNS 2011)
Country/Territory	Spain
City	Nerja
Period	07/06/2011 → 10/06/2011

Series	Lecture Notes in Computer Science
Volume	6715
ISSN	0302-9743

Access to Document

10.1007/978-3-642-21554-4_26

OpenUrl availability

Full text

Cite this

@inproceedings{2d4c7415f10a4af7b30f58554c9e352d,

title = "Practical Attacks on the Maelstrom-0 Compression Function",

abstract = "In this paper we present attacks on the compression function of Maelstrom-0. It is based on the Whirlpool hash function standardized by ISO and was designed to be a faster and more robust enhancement. We analyze the compression function and use differential cryptanalysis to construct collisions for reduced variants of the Maelstrom-0 compression function. The attacks presented in this paper are of practical complexity and show significant weaknesses in the construction compared to its predecessor. The methods used are based on recent results in the analysis of AES-based hash functions.",

author = "Stefan K{\"o}lbl and Florian Mendel",

year = "2011",

doi = "10.1007/978-3-642-21554-4_26",

language = "English",

isbn = "978-3-642-21553-7",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "449--461",

booktitle = "Applied Cryptography and Network Security",

note = "9th International Conference on Applied Cryptography and Network Security (ACNS 2011) ; Conference date: 07-06-2011 Through 10-06-2011",

}

Kölbl, S & Mendel, F 2011, Practical Attacks on the Maelstrom-0 Compression Function. in Applied Cryptography and Network Security: 9th International Conference, ACNS 2011, Nerja, Spain, June 7-10, 2011. Proceedings. Springer, Lecture Notes in Computer Science, vol. 6715, pp. 449-461, 9th International Conference on Applied Cryptography and Network Security (ACNS 2011), Nerja, Spain, 07/06/2011. https://doi.org/10.1007/978-3-642-21554-4_26

Practical Attacks on the Maelstrom-0 Compression Function. / Kölbl, Stefan; Mendel, Florian.
Applied Cryptography and Network Security: 9th International Conference, ACNS 2011, Nerja, Spain, June 7-10, 2011. Proceedings. Springer, 2011. p. 449-461 (Lecture Notes in Computer Science, Vol. 6715).

Research output: Chapter in Book/Report/Conference proceeding › Article in proceedings › Research › peer-review

TY - GEN

T1 - Practical Attacks on the Maelstrom-0 Compression Function

AU - Kölbl, Stefan

AU - Mendel, Florian

PY - 2011

Y1 - 2011

N2 - In this paper we present attacks on the compression function of Maelstrom-0. It is based on the Whirlpool hash function standardized by ISO and was designed to be a faster and more robust enhancement. We analyze the compression function and use differential cryptanalysis to construct collisions for reduced variants of the Maelstrom-0 compression function. The attacks presented in this paper are of practical complexity and show significant weaknesses in the construction compared to its predecessor. The methods used are based on recent results in the analysis of AES-based hash functions.

AB - In this paper we present attacks on the compression function of Maelstrom-0. It is based on the Whirlpool hash function standardized by ISO and was designed to be a faster and more robust enhancement. We analyze the compression function and use differential cryptanalysis to construct collisions for reduced variants of the Maelstrom-0 compression function. The attacks presented in this paper are of practical complexity and show significant weaknesses in the construction compared to its predecessor. The methods used are based on recent results in the analysis of AES-based hash functions.

U2 - 10.1007/978-3-642-21554-4_26

DO - 10.1007/978-3-642-21554-4_26

M3 - Article in proceedings

SN - 978-3-642-21553-7

T3 - Lecture Notes in Computer Science

SP - 449

EP - 461

BT - Applied Cryptography and Network Security

PB - Springer

T2 - 9th International Conference on Applied Cryptography and Network Security (ACNS 2011)

Y2 - 7 June 2011 through 10 June 2011

ER -

Practical Attacks on the Maelstrom-0 Compression Function

Abstract

Conference

Access to Document

OpenUrl availability

Fingerprint

Cite this