Related-key attacks on reduced rounds of SHACAL-2

Jongsung Kim; Guil Kim; Sangjin Lee; Jongin Lim; Junghwan Song

doi:10.1007/978-3-540-30556-9_15

Related-key attacks on reduced rounds of SHACAL-2

Jongsung Kim, Guil Kim, Sangjin Lee, Jongin Lim, Junghwan Song

School of Cybersecurity

Research output: Contribution to journal › Article › peer-review

8 Citations (Scopus)

Abstract

SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.

Original language	English
Pages (from-to)	175-190
Number of pages	16
Journal	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3348
DOIs	https://doi.org/10.1007/978-3-540-30556-9_15
Publication status	Published - 2004

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-540-30556-9_15

Cite this

@article{4b4898814e8b4c569ca4fac4e703f6d2,

title = "Related-key attacks on reduced rounds of SHACAL-2",

abstract = "SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.",

author = "Jongsung Kim and Guil Kim and Sangjin Lee and Jongin Lim and Junghwan Song",

note = "Funding Information: ★ This work was supported by the Ministry of Information & Communications, Korea, under the Information Technology Research Center (ITRC) Support Program.",

year = "2004",

doi = "10.1007/978-3-540-30556-9_15",

language = "English",

volume = "3348",

pages = "175--190",

journal = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

issn = "0302-9743",

publisher = "Springer Verlag",

}

TY - JOUR

T1 - Related-key attacks on reduced rounds of SHACAL-2

AU - Kim, Jongsung

AU - Kim, Guil

AU - Lee, Sangjin

AU - Lim, Jongin

AU - Song, Junghwan

N1 - Funding Information: ★ This work was supported by the Ministry of Information & Communications, Korea, under the Information Technology Research Center (ITRC) Support Program.

PY - 2004

Y1 - 2004

N2 - SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.

AB - SHACAL-2 is a 256-bit block cipher with up to 512 bits of key length based on the hash function SHA-2. It was submitted to the NESSIE project and was recommended as one of the NESSIE selections. In this paper we present two types of related-key attacks called the related-key differential-(non)linear and the related-key rectangle attacks, and we discuss the security of SHACAL-2 against these two types of attacks. Using the related-key differential-nonlinear attack we can break SHACAL-2 with 512-bit keys up to 35 out of its 64 rounds, and using the related-key rectangle attack we can break SHACAL-2 with 512-bit keys up to 37 rounds.

UR - http://www.scopus.com/inward/record.url?scp=35048904140&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-30556-9_15

DO - 10.1007/978-3-540-30556-9_15

M3 - Article

AN - SCOPUS:35048904140

SN - 0302-9743

VL - 3348

SP - 175

EP - 190

JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

ER -

Related-key attacks on reduced rounds of SHACAL-2

Abstract

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this