• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International Conference on the Theory and Application of Cryptology and Information Security >Rebound Distinguishers: Results on the Full Whirlpool Compression Function
【24h】

Rebound Distinguishers: Results on the Full Whirlpool Compression Function

机译:反弹区别:结果全漩涡压缩功能

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Whirlpool is a hash function based on a block cipher that can be seen as a scaled up variant of the AES. The main difference is the (compared to AES) extremely conservative key schedule. In this work, we present a distinguishing attack on the full compression function of Whirlpool. We obtain this result by improving the rebound attack on reduced Whirlpool with two new techniques. First, the inbound phase of the rebound attack is extended by up to two rounds using the available degrees of freedom of the key schedule. This results in a near-collision attack on 9.5 rounds of the compression function of Whirlpool with a complexity of 2~(176) and negligible memory requirements. Second, we show how to turn this near-collision attack into a distinguishing attack for the full 10 round compression function of Whirlpool. This is the first result on the full Whirlpool compression function.
机译:惠而浦是一种基于块密码的哈希函数,可以被视为AES的缩放变体。主要区别是(与AES相比)极为保守的关键时间表。在这项工作中,我们对惠而浦的全压缩功能带来了一个显着的攻击。通过改善两种新技术的反弹攻击,我们通过改善对漩涡的反弹攻击来获得这一结果。首先,反弹攻击的入境阶段使用关键计划的可用自由度来延长多达两轮。这导致近碰撞攻击涡旋的9.5轮压缩功能,复杂2〜(176)和可忽略的内存要求。其次,我们展示了如何将这种近乎碰撞攻击转变为惠而浦全10圆形压缩功能的显着攻击。这是完整漩涡压缩功能的第一个结果。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号