Related-key rectangle attack of the full HAS-160 encryption mode

Orr Dunkelman; Ewan Fleischmann; Michael Gorski; Stefan Lucks

doi:10.1007/978-3-642-10628-6_11

Related-key rectangle attack of the full HAS-160 encryption mode

Orr Dunkelman, Ewan Fleischmann, Michael Gorski, Stefan Lucks

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In this paper we investigate the security of the encryption mode of the HAS-160 hash function. HAS-160 is a Korean hash standard which is widely used in Korean industry. The structure of HAS-160 is similar to SHA-1 besides some modifications. In this paper, we present the first cryptographic attack that breaks the encryption mode of the full 80-round HAS-160. SHACAL-1 and the encryption mode of HAS-160 are both blockciphers with key size 512 bits and plain-/ciphertext size of 160 bits. We apply a key recovery attack that needs about 2¹⁵⁵ chosen plaintexts and 2^377.5 80-round HAS-160 encryptions. The attack does not aim for a collision, preimage or 2nd-preimage attack, but it shows that HAS-160 used as a block cipher can be differentiated from an ideal cipher faster than exhaustive search.

Original language	English
Title of host publication	Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings
Pages	157-168
Number of pages	12
DOIs	https://doi.org/10.1007/978-3-642-10628-6_11
State	Published - 2009
Externally published	Yes
Event	10th International Conference on Cryptology in India, INDOCRYPT 2009 - New Delhi, India Duration: 13 Dec 2009 → 16 Dec 2009

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	5922 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	10th International Conference on Cryptology in India, INDOCRYPT 2009
Country/Territory	India
City	New Delhi
Period	13/12/09 → 16/12/09

Keywords

Differential cryptanalysis
HAS-160
Related-key rectangle attack

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science (all)

Access to Document

10.1007/978-3-642-10628-6_11

Cite this

Dunkelman, O., Fleischmann, E., Gorski, M., & Lucks, S. (2009). Related-key rectangle attack of the full HAS-160 encryption mode. In Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings (pp. 157-168). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5922 LNCS). https://doi.org/10.1007/978-3-642-10628-6_11

Dunkelman, Orr ; Fleischmann, Ewan ; Gorski, Michael et al. / Related-key rectangle attack of the full HAS-160 encryption mode. Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings. 2009. pp. 157-168 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{7a6ef3b5ba114bad94b177f7c83c98b2,

title = "Related-key rectangle attack of the full HAS-160 encryption mode",

abstract = "In this paper we investigate the security of the encryption mode of the HAS-160 hash function. HAS-160 is a Korean hash standard which is widely used in Korean industry. The structure of HAS-160 is similar to SHA-1 besides some modifications. In this paper, we present the first cryptographic attack that breaks the encryption mode of the full 80-round HAS-160. SHACAL-1 and the encryption mode of HAS-160 are both blockciphers with key size 512 bits and plain-/ciphertext size of 160 bits. We apply a key recovery attack that needs about 2155 chosen plaintexts and 2377.5 80-round HAS-160 encryptions. The attack does not aim for a collision, preimage or 2nd-preimage attack, but it shows that HAS-160 used as a block cipher can be differentiated from an ideal cipher faster than exhaustive search.",

keywords = "Differential cryptanalysis, HAS-160, Related-key rectangle attack",

author = "Orr Dunkelman and Ewan Fleischmann and Michael Gorski and Stefan Lucks",

year = "2009",

doi = "10.1007/978-3-642-10628-6_11",

language = "English",

isbn = "3642106277",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "157--168",

booktitle = "Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings",

note = "10th International Conference on Cryptology in India, INDOCRYPT 2009 ; Conference date: 13-12-2009 Through 16-12-2009",

}

Dunkelman, O, Fleischmann, E, Gorski, M & Lucks, S 2009, Related-key rectangle attack of the full HAS-160 encryption mode. in Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 5922 LNCS, pp. 157-168, 10th International Conference on Cryptology in India, INDOCRYPT 2009, New Delhi, India, 13/12/09. https://doi.org/10.1007/978-3-642-10628-6_11

Related-key rectangle attack of the full HAS-160 encryption mode. / Dunkelman, Orr; Fleischmann, Ewan; Gorski, Michael et al.

Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings. 2009. p. 157-168 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5922 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Related-key rectangle attack of the full HAS-160 encryption mode

AU - Dunkelman, Orr

AU - Fleischmann, Ewan

AU - Gorski, Michael

AU - Lucks, Stefan

PY - 2009

Y1 - 2009

N2 - In this paper we investigate the security of the encryption mode of the HAS-160 hash function. HAS-160 is a Korean hash standard which is widely used in Korean industry. The structure of HAS-160 is similar to SHA-1 besides some modifications. In this paper, we present the first cryptographic attack that breaks the encryption mode of the full 80-round HAS-160. SHACAL-1 and the encryption mode of HAS-160 are both blockciphers with key size 512 bits and plain-/ciphertext size of 160 bits. We apply a key recovery attack that needs about 2155 chosen plaintexts and 2377.5 80-round HAS-160 encryptions. The attack does not aim for a collision, preimage or 2nd-preimage attack, but it shows that HAS-160 used as a block cipher can be differentiated from an ideal cipher faster than exhaustive search.

AB - In this paper we investigate the security of the encryption mode of the HAS-160 hash function. HAS-160 is a Korean hash standard which is widely used in Korean industry. The structure of HAS-160 is similar to SHA-1 besides some modifications. In this paper, we present the first cryptographic attack that breaks the encryption mode of the full 80-round HAS-160. SHACAL-1 and the encryption mode of HAS-160 are both blockciphers with key size 512 bits and plain-/ciphertext size of 160 bits. We apply a key recovery attack that needs about 2155 chosen plaintexts and 2377.5 80-round HAS-160 encryptions. The attack does not aim for a collision, preimage or 2nd-preimage attack, but it shows that HAS-160 used as a block cipher can be differentiated from an ideal cipher faster than exhaustive search.

KW - Differential cryptanalysis

KW - HAS-160

KW - Related-key rectangle attack

UR - http://www.scopus.com/inward/record.url?scp=77649241959&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-10628-6_11

DO - 10.1007/978-3-642-10628-6_11

M3 - Conference contribution

AN - SCOPUS:77649241959

SN - 3642106277

SN - 9783642106279

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 157

EP - 168

BT - Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings

T2 - 10th International Conference on Cryptology in India, INDOCRYPT 2009

Y2 - 13 December 2009 through 16 December 2009

ER -

Dunkelman O, Fleischmann E, Gorski M, Lucks S. Related-key rectangle attack of the full HAS-160 encryption mode. In Progress in Cryptology - INDOCRYPT 2009 - 10th International Conference on Cryptology in India, Proceedings. 2009. p. 157-168. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-10628-6_11

Related-key rectangle attack of the full HAS-160 encryption mode

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this