International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Distinguishers for the Compression Function and Output Transformation of Hamsi-256

Authors:
Jean-Philippe Aumasson
Emilia Käsper
Lars R. Knudsen
Krystian Matusiewicz
Rune Odegaard
Thomas Peyrin
Martin Schläffer
Download:
URL: http://eprint.iacr.org/2010/091
Search ePrint
Search Google
Abstract: Hamsi is one of 14 remaining candidates in NIST's Hash Competition for the future hash standard SHA-3. Until now, little analysis has been published on its resistance to differential cryptanalysis, the main technique used to attack hash functions. We present a study of Hamsi's resistance to differential and higher-order differential cryptanalysis, with focus on the 256-bit version of Hamsi. Our main results are efficient distinguishers and near-collisions for its full (3-round) compression function, and distinguishers for its full (6-round) finalization function, indicating that Hamsi's building blocks do not behave ideally.
BibTeX
@misc{eprint-2010-22992,
  title={Distinguishers for the Compression Function and Output Transformation of Hamsi-256},
  booktitle={IACR Eprint archive},
  keywords={hash functions, differential cryptanalysis, SHA-3},
  url={http://eprint.iacr.org/2010/091},
  note={To appear in proceedings of ACISP 2010 emilia.kasper@esat.kuleuven.be 14723 received 19 Feb 2010, last revised 24 Apr 2010},
  author={Jean-Philippe Aumasson and Emilia Käsper and Lars R. Knudsen and Krystian Matusiewicz and Rune Odegaard and Thomas Peyrin and Martin Schläffer},
  year=2010
}