Related-key attacks on reduced rounds of SHACAL-2

Jongsung Kim, Guil Kim, Sangjin Lee, Jong In Lim, Junghwan Song

Research output: Contribution to journalArticle

21 Citations (Scopus)

Abstract

SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.

Original languageEnglish
Pages (from-to)175-190
Number of pages16
JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume3348
Publication statusPublished - 2004 Dec 1

Fingerprint

Related-key Attack
Attack
Hash functions
Rectangle
Block Cipher
Hash Function

ASJC Scopus subject areas

  • Computer Science(all)
  • Biochemistry, Genetics and Molecular Biology(all)
  • Theoretical Computer Science

Cite this

@article{4b4898814e8b4c569ca4fac4e703f6d2,
title = "Related-key attacks on reduced rounds of SHACAL-2",
abstract = "SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.",
author = "Jongsung Kim and Guil Kim and Sangjin Lee and Lim, {Jong In} and Junghwan Song",
year = "2004",
month = "12",
day = "1",
language = "English",
volume = "3348",
pages = "175--190",
journal = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
issn = "0302-9743",
publisher = "Springer Verlag",

}

TY - JOUR

T1 - Related-key attacks on reduced rounds of SHACAL-2

AU - Kim, Jongsung

AU - Kim, Guil

AU - Lee, Sangjin

AU - Lim, Jong In

AU - Song, Junghwan

PY - 2004/12/1

Y1 - 2004/12/1

N2 - SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.

AB - SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.

UR - http://www.scopus.com/inward/record.url?scp=35048904140&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=35048904140&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:35048904140

VL - 3348

SP - 175

EP - 190

JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SN - 0302-9743

ER -