Abstract
In this paper we analyse the security of the SHA-3 candidate ARIRANG. We show that bitwise complementation of whole registers turns out to be very useful for constructing high-probability differential characteristics in the function. We use this approach to find near-collisions with Hamming weight 32 for the full compression function as well as collisions for the compression function of ARIRANG reduced to 26 rounds, both with complexity close to 2^0 and memory requirements of only a few words. We use near collisions for the compression function to construct pseudo-collisions for the complete hash functions ARIRANG-224 and ARIRANG-384 with complexity 2^23 and close to 2^0, respectively. We implemented the attacks and provide examples of appropriate pairs of H,M values. We also provide possible configurations which may give collisions for step-reduced and full ARIRANG.
| Original language | English |
|---|---|
| Title of host publication | Selected Areas in Cryptography : 16th Annual International Workshop |
| Editors | Michael J. Jacobson, Vincent Rijmen, Reihaneh Safavi-Naini |
| Number of pages | 467 |
| Volume | 5867 |
| Place of Publication | Berlin Heidelberg |
| Publisher | Springer |
| Publication date | 2009 |
| Edition | 1st |
| Pages | 141-156 |
| ISBN (Print) | 978-3-642-05443-3 |
| DOIs | |
| Publication status | Published - 2009 |
| Event | Selected Areas in Cryptography: 16th Annual International Workshop - Calgary, Canada Duration: 13 Aug 2009 → 14 Aug 2009 Conference number: 16 |
Workshop
| Workshop | Selected Areas in Cryptography: 16th Annual International Workshop |
|---|---|
| Number | 16 |
| Country/Territory | Canada |
| City | Calgary |
| Period | 13/08/2009 → 14/08/2009 |
Keywords
- pseudo-collision
- practical
- ARIRANG