Gebhardt, Max ; Illies, Georg ; Schindler, Werner (2008)
Computing Almost Exact Probabilities of Differential Hash Collision Paths by Applying Appropriate Stochastic Methods.
In: Cryptology ePrint Archive, 2008 (022)
Artikel, Bibliographie
Kurzbeschreibung (Abstract)
Generally speaking, the probability of a differential path determines an upper bound for the expected workload and thus for the true risk potential of a differential attack. In particular, if the expected workload seems to be in a borderline region between practical feasibility and non-feasibility it is desirable to know the path probability as exact as possible. We present a generally applicable approach to determine at least almost exact probabilities of differential paths where we focus on (near-)collision paths for Merkle-Damgard-type hash functions. Our results show both that the number of bit conditions provides only a rough estimate for the true path probability and that the IV may have significant impact on the path probability. For MD5 we verified the effectivity of our approach experimentally. An abbreviated version \cite{GIS4}, which in particular omits proofs, technical details and several examples, will appear in the proceedings of the security conference 'Sicherheit 2008'.
| Typ des Eintrags: | Artikel |
|---|---|
| Erschienen: | 2008 |
| Autor(en): | Gebhardt, Max ; Illies, Georg ; Schindler, Werner |
| Art des Eintrags: | Bibliographie |
| Titel: | Computing Almost Exact Probabilities of Differential Hash Collision Paths by Applying Appropriate Stochastic Methods |
| Sprache: | Englisch |
| Publikationsjahr: | Januar 2008 |
| Verlag: | International Association for Cryptologic Research (IACR) |
| Titel der Zeitschrift, Zeitung oder Schriftenreihe: | Cryptology ePrint Archive |
| Jahrgang/Volume einer Zeitschrift: | 2008 |
| (Heft-)Nummer: | 022 |
| URL / URN: | https://eprint.iacr.org/2008/022 |
| Kurzbeschreibung (Abstract): | Generally speaking, the probability of a differential path determines an upper bound for the expected workload and thus for the true risk potential of a differential attack. In particular, if the expected workload seems to be in a borderline region between practical feasibility and non-feasibility it is desirable to know the path probability as exact as possible. We present a generally applicable approach to determine at least almost exact probabilities of differential paths where we focus on (near-)collision paths for Merkle-Damgard-type hash functions. Our results show both that the number of bit conditions provides only a rough estimate for the true path probability and that the IV may have significant impact on the path probability. For MD5 we verified the effectivity of our approach experimentally. An abbreviated version \cite{GIS4}, which in particular omits proofs, technical details and several examples, will appear in the proceedings of the security conference 'Sicherheit 2008'. |
| Freie Schlagworte: | Secure Things, Hash function, collision path, postaddition, probability, stochastic model |
| ID-Nummer: | TUD-CS-2008-1131 |
| Fachbereich(e)/-gebiet(e): | LOEWE LOEWE > LOEWE-Zentren LOEWE > LOEWE-Zentren > CASED – Center for Advanced Security Research Darmstadt |
| Hinterlegungsdatum: | 30 Dez 2016 20:23 |
| Letzte Änderung: | 02 Dez 2020 12:03 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum