Improving Local Collisions: New Attacks on Reduced SHA-256
- Cite this paper as:
- Mendel F., Nad T., Schläffer M. (2013) Improving Local Collisions: New Attacks on Reduced SHA-256. In: Johansson T., Nguyen P.Q. (eds) Advances in Cryptology – EUROCRYPT 2013. EUROCRYPT 2013. Lecture Notes in Computer Science, vol 7881. Springer, Berlin, Heidelberg
In this paper, we focus on the construction of semi-free-start collisions for SHA-256, and show how to turn them into collisions. We present a collision attack on 28 steps of the hash function with practical complexity. Using a two-block approach we are able to turn a semi-free-start collision into a collision for 31 steps with a complexity of at most 265.5. The main improvement of our work is to extend the size of the local collisions used in these attacks. To construct differential characteristics and confirming message pairs for longer local collisions, we had to improve the search strategy of our automated search tool. To test the limits of our techniques we present a semi-free-start collision for 38 steps.
Keywordshash functions SHA-2 cryptanalysis collisions semi-free-start collisions differential characteristics automatic search tool
Unable to display preview. Download preview PDF.