CryptoDB
A Practical Limit of Security Proof in the Ideal Cipher Model : Possibility of Using the Constant As a Trapdoor In Several Double Block Length Hash Functions
| Authors: | |
|---|---|
| Download: | |
| Abstract: | Recently, Shoichi Hirose \cite{Hirose06} proposed several double block length (DBL) hash functions. Each DBL hash function uses a constant which has a role to make the DBL hash function collision-resistant in the ideal cipher model. However, we have to instantiate a block cipher. In this paper, we show that the constant may be used as a trapdoor to help a attacker to find a collision easily. In case of 256-bit output size, we can find a collision with the complexity $2^{64}$. This is a gap between the security of the DBL hash function in the ideal cipher model and the security of the DBL hash function based on any block cipher. |
BibTeX
@misc{eprint-2006-21972,
title={A Practical Limit of Security Proof in the Ideal Cipher Model : Possibility of Using the Constant As a Trapdoor In Several Double Block Length Hash Functions},
booktitle={IACR Eprint archive},
keywords={secret-key cryptography / Hash Function, Collision Attack, Block Cipher, Double Block Length Hash Function, Constant, Trapdoor.},
url={http://eprint.iacr.org/2006/481},
note={ pointchang@gmail.com 13503 received 21 Dec 2006},
author={Donghoon Chang},
year=2006
}