Improved Cryptanalysis of Skein View Full Text


Ontology type: schema:Chapter      Open Access: True


Chapter Info

DATE

2009

AUTHORS

Jean-Philippe Aumasson , Çağdaş Çalık , Willi Meier , Onur Özen , Raphael C. -W. Phan , Kerem Varıcı

ABSTRACT

The hash function Skein is the submission of Ferguson et al. to the NIST Hash Competition, and is arguably a serious candidate for selection as SHA-3. This paper presents the first third-party analysis of Skein, with an extensive study of its main component: the block cipher Threefish. We notably investigate near collisions, distinguishers, impossible differentials, key recovery using related-key differential and boomerang attacks. In particular, we present near collisions on up to 17 rounds, an impossible differential on 21 rounds, a related-key boomerang distinguisher on 34 rounds, a known-related-key boomerang distinguisher on 35 rounds, and key recovery attacks on up to 32 rounds, out of 72 in total for Threefish-512. None of our attacks directly extends to the full Skein hash. However, the pseudorandomness of Threefish is required to validate the security proofs on Skein, and our results conclude that at least 36 rounds of Threefish seem required for optimal security guarantees. More... »

PAGES

542-559

Identifiers

URI

http://scigraph.springernature.com/pub.10.1007/978-3-642-10366-7_32

DOI

http://dx.doi.org/10.1007/978-3-642-10366-7_32

DIMENSIONS

https://app.dimensions.ai/details/publication/pub.1031193500


Indexing Status Check whether this publication has been indexed by Scopus and Web Of Science using the SN Indexing Status Tool
Incoming Citations Browse incoming citations for this publication using opencitations.net

JSON-LD is the canonical representation for SciGraph data.

TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT

[
  {
    "@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json", 
    "about": [
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Information and Computing Sciences", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0804", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Data Format", 
        "type": "DefinedTerm"
      }
    ], 
    "author": [
      {
        "affiliation": {
          "alternateName": "FHNW, Klosterzelgstrasse 2, 5210, Windisch, Switzerland", 
          "id": "http://www.grid.ac/institutes/grid.410380.e", 
          "name": [
            "FHNW, Klosterzelgstrasse 2, 5210, Windisch, Switzerland"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Aumasson", 
        "givenName": "Jean-Philippe", 
        "id": "sg:person.012606440341.66", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012606440341.66"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Institute of Applied Mathematics, Middle East Technical University, 06531, Ankara, Turkey", 
          "id": "http://www.grid.ac/institutes/grid.6935.9", 
          "name": [
            "Institute of Applied Mathematics, Middle East Technical University, 06531, Ankara, Turkey"
          ], 
          "type": "Organization"
        }, 
        "familyName": "\u00c7al\u0131k", 
        "givenName": "\u00c7a\u011fda\u015f", 
        "id": "sg:person.011323255617.28", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.011323255617.28"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "FHNW, Klosterzelgstrasse 2, 5210, Windisch, Switzerland", 
          "id": "http://www.grid.ac/institutes/grid.410380.e", 
          "name": [
            "FHNW, Klosterzelgstrasse 2, 5210, Windisch, Switzerland"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Meier", 
        "givenName": "Willi", 
        "id": "sg:person.07653531142.18", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07653531142.18"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "EPFL IC LACAL, Station 14, 1015, Lausanne, Switzerland", 
          "id": "http://www.grid.ac/institutes/grid.5333.6", 
          "name": [
            "EPFL IC LACAL, Station 14, 1015, Lausanne, Switzerland"
          ], 
          "type": "Organization"
        }, 
        "familyName": "\u00d6zen", 
        "givenName": "Onur", 
        "id": "sg:person.013313712055.92", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013313712055.92"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Electronic and Electrical Engineering, Loughborough Uni, LE11 3TU, UK", 
          "id": "http://www.grid.ac/institutes/grid.6571.5", 
          "name": [
            "Electronic and Electrical Engineering, Loughborough Uni, LE11 3TU, UK"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Phan", 
        "givenName": "Raphael C. -W.", 
        "id": "sg:person.014732232610.32", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014732232610.32"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Dept. of Electrical Engineering, K.U.Leuven, ESAT/SCD/COSIC and IBBT Kasteelpark Arenberg 10, 3001, Heverlee, Belgium", 
          "id": "http://www.grid.ac/institutes/grid.5596.f", 
          "name": [
            "Dept. of Electrical Engineering, K.U.Leuven, ESAT/SCD/COSIC and IBBT Kasteelpark Arenberg 10, 3001, Heverlee, Belgium"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Var\u0131c\u0131", 
        "givenName": "Kerem", 
        "id": "sg:person.013536203777.69", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013536203777.69"
        ], 
        "type": "Person"
      }
    ], 
    "datePublished": "2009", 
    "datePublishedReg": "2009-01-01", 
    "description": "The hash function Skein is the submission of Ferguson et al. to the NIST Hash Competition, and is arguably a serious candidate for selection as SHA-3. This paper presents the first third-party analysis of Skein, with an extensive study of its main component: the block cipher Threefish. We notably investigate near collisions, distinguishers, impossible differentials, key recovery using related-key differential and boomerang attacks. In particular, we present near collisions on up to 17 rounds, an impossible differential on 21 rounds, a related-key boomerang distinguisher on 34 rounds, a known-related-key boomerang distinguisher on 35 rounds, and key recovery attacks on up to 32 rounds, out of 72 in total for Threefish-512. None of our attacks directly extends to the full Skein hash. However, the pseudorandomness of Threefish is required to validate the security proofs on Skein, and our results conclude that at least 36 rounds of Threefish seem required for optimal security guarantees.", 
    "editor": [
      {
        "familyName": "Matsui", 
        "givenName": "Mitsuru", 
        "type": "Person"
      }
    ], 
    "genre": "chapter", 
    "id": "sg:pub.10.1007/978-3-642-10366-7_32", 
    "inLanguage": "en", 
    "isAccessibleForFree": true, 
    "isPartOf": {
      "isbn": [
        "978-3-642-10365-0", 
        "978-3-642-10366-7"
      ], 
      "name": "Advances in Cryptology \u2013 ASIACRYPT 2009", 
      "type": "Book"
    }, 
    "keywords": [
      "total", 
      "rounds", 
      "Ferguson et al", 
      "extensive study", 
      "recovery", 
      "study", 
      "differential", 
      "attacks", 
      "third-party analysis", 
      "candidates", 
      "first third-party analysis", 
      "main components", 
      "serious candidate", 
      "analysis", 
      "related-key differential", 
      "results", 
      "hash function Skein", 
      "submission", 
      "skein", 
      "components", 
      "selection", 
      "et al", 
      "NIST Hash Competition", 
      "proof", 
      "boomerang attack", 
      "Threefish", 
      "al", 
      "competition", 
      "collisions", 
      "paper", 
      "impossible differentials", 
      "distinguisher", 
      "key recovery attack", 
      "boomerang distinguishers", 
      "recovery attack", 
      "guarantees", 
      "SHA-3", 
      "key recovery", 
      "cryptanalysis", 
      "pseudorandomness", 
      "hash", 
      "security proof", 
      "security guarantees"
    ], 
    "name": "Improved Cryptanalysis of Skein", 
    "pagination": "542-559", 
    "productId": [
      {
        "name": "dimensions_id", 
        "type": "PropertyValue", 
        "value": [
          "pub.1031193500"
        ]
      }, 
      {
        "name": "doi", 
        "type": "PropertyValue", 
        "value": [
          "10.1007/978-3-642-10366-7_32"
        ]
      }
    ], 
    "publisher": {
      "name": "Springer Nature", 
      "type": "Organisation"
    }, 
    "sameAs": [
      "https://doi.org/10.1007/978-3-642-10366-7_32", 
      "https://app.dimensions.ai/details/publication/pub.1031193500"
    ], 
    "sdDataset": "chapters", 
    "sdDatePublished": "2022-06-01T22:33", 
    "sdLicense": "https://scigraph.springernature.com/explorer/license/", 
    "sdPublisher": {
      "name": "Springer Nature - SN SciGraph project", 
      "type": "Organization"
    }, 
    "sdSource": "s3://com-springernature-scigraph/baseset/20220601/entities/gbq_results/chapter/chapter_372.jsonl", 
    "type": "Chapter", 
    "url": "https://doi.org/10.1007/978-3-642-10366-7_32"
  }
]
 

Download the RDF metadata as:  json-ld nt turtle xml License info

HOW TO GET THIS DATA PROGRAMMATICALLY:

JSON-LD is a popular format for linked data which is fully compatible with JSON.

curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-10366-7_32'

N-Triples is a line-based linked data format ideal for batch operations.

curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-10366-7_32'

Turtle is a human-readable linked data format.

curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-10366-7_32'

RDF/XML is a standard XML format for linked data.

curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-642-10366-7_32'


 

This table displays all metadata directly associated to this object as RDF triples.

150 TRIPLES      23 PREDICATES      69 URIs      62 LITERALS      7 BLANK NODES

Subject Predicate Object
1 sg:pub.10.1007/978-3-642-10366-7_32 schema:about anzsrc-for:08
2 anzsrc-for:0804
3 schema:author N3335cfaeddb047aaa5e9abeab2162368
4 schema:datePublished 2009
5 schema:datePublishedReg 2009-01-01
6 schema:description The hash function Skein is the submission of Ferguson et al. to the NIST Hash Competition, and is arguably a serious candidate for selection as SHA-3. This paper presents the first third-party analysis of Skein, with an extensive study of its main component: the block cipher Threefish. We notably investigate near collisions, distinguishers, impossible differentials, key recovery using related-key differential and boomerang attacks. In particular, we present near collisions on up to 17 rounds, an impossible differential on 21 rounds, a related-key boomerang distinguisher on 34 rounds, a known-related-key boomerang distinguisher on 35 rounds, and key recovery attacks on up to 32 rounds, out of 72 in total for Threefish-512. None of our attacks directly extends to the full Skein hash. However, the pseudorandomness of Threefish is required to validate the security proofs on Skein, and our results conclude that at least 36 rounds of Threefish seem required for optimal security guarantees.
7 schema:editor Nb1fb4237ec73443dbac71d8d1eeedc7c
8 schema:genre chapter
9 schema:inLanguage en
10 schema:isAccessibleForFree true
11 schema:isPartOf N219bbaca218e4cd2a2bdb00e3c2ecda1
12 schema:keywords Ferguson et al
13 NIST Hash Competition
14 SHA-3
15 Threefish
16 al
17 analysis
18 attacks
19 boomerang attack
20 boomerang distinguishers
21 candidates
22 collisions
23 competition
24 components
25 cryptanalysis
26 differential
27 distinguisher
28 et al
29 extensive study
30 first third-party analysis
31 guarantees
32 hash
33 hash function Skein
34 impossible differentials
35 key recovery
36 key recovery attack
37 main components
38 paper
39 proof
40 pseudorandomness
41 recovery
42 recovery attack
43 related-key differential
44 results
45 rounds
46 security guarantees
47 security proof
48 selection
49 serious candidate
50 skein
51 study
52 submission
53 third-party analysis
54 total
55 schema:name Improved Cryptanalysis of Skein
56 schema:pagination 542-559
57 schema:productId N726fba23a0ca4146a63b117b258fef7d
58 N99727164ab874473a42071859752ae76
59 schema:publisher Nfbebffb3440f45c99ef6bfc3389614e6
60 schema:sameAs https://app.dimensions.ai/details/publication/pub.1031193500
61 https://doi.org/10.1007/978-3-642-10366-7_32
62 schema:sdDatePublished 2022-06-01T22:33
63 schema:sdLicense https://scigraph.springernature.com/explorer/license/
64 schema:sdPublisher Nd9ffd26eda8449cbb12237ab5dda7f03
65 schema:url https://doi.org/10.1007/978-3-642-10366-7_32
66 sgo:license sg:explorer/license/
67 sgo:sdDataset chapters
68 rdf:type schema:Chapter
69 N219bbaca218e4cd2a2bdb00e3c2ecda1 schema:isbn 978-3-642-10365-0
70 978-3-642-10366-7
71 schema:name Advances in Cryptology – ASIACRYPT 2009
72 rdf:type schema:Book
73 N3335cfaeddb047aaa5e9abeab2162368 rdf:first sg:person.012606440341.66
74 rdf:rest N65269d8b4c4a44688d0b68d307b026a2
75 N376db37ed68f46c18db7ecd7a2ffe189 rdf:first sg:person.013536203777.69
76 rdf:rest rdf:nil
77 N65269d8b4c4a44688d0b68d307b026a2 rdf:first sg:person.011323255617.28
78 rdf:rest N8b5b101c446c4dfcbac0acda90a3fd58
79 N726fba23a0ca4146a63b117b258fef7d schema:name dimensions_id
80 schema:value pub.1031193500
81 rdf:type schema:PropertyValue
82 N8b5b101c446c4dfcbac0acda90a3fd58 rdf:first sg:person.07653531142.18
83 rdf:rest N9bec296791a040c2a640cbd447331aa4
84 N99727164ab874473a42071859752ae76 schema:name doi
85 schema:value 10.1007/978-3-642-10366-7_32
86 rdf:type schema:PropertyValue
87 N9bec296791a040c2a640cbd447331aa4 rdf:first sg:person.013313712055.92
88 rdf:rest Ne1ac08050dc94314b12dbbcd008f72cb
89 Nb1fb4237ec73443dbac71d8d1eeedc7c rdf:first Nfb49e7ab0dee4e5489162bc74a3883cf
90 rdf:rest rdf:nil
91 Nd9ffd26eda8449cbb12237ab5dda7f03 schema:name Springer Nature - SN SciGraph project
92 rdf:type schema:Organization
93 Ne1ac08050dc94314b12dbbcd008f72cb rdf:first sg:person.014732232610.32
94 rdf:rest N376db37ed68f46c18db7ecd7a2ffe189
95 Nfb49e7ab0dee4e5489162bc74a3883cf schema:familyName Matsui
96 schema:givenName Mitsuru
97 rdf:type schema:Person
98 Nfbebffb3440f45c99ef6bfc3389614e6 schema:name Springer Nature
99 rdf:type schema:Organisation
100 anzsrc-for:08 schema:inDefinedTermSet anzsrc-for:
101 schema:name Information and Computing Sciences
102 rdf:type schema:DefinedTerm
103 anzsrc-for:0804 schema:inDefinedTermSet anzsrc-for:
104 schema:name Data Format
105 rdf:type schema:DefinedTerm
106 sg:person.011323255617.28 schema:affiliation grid-institutes:grid.6935.9
107 schema:familyName Çalık
108 schema:givenName Çağdaş
109 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.011323255617.28
110 rdf:type schema:Person
111 sg:person.012606440341.66 schema:affiliation grid-institutes:grid.410380.e
112 schema:familyName Aumasson
113 schema:givenName Jean-Philippe
114 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012606440341.66
115 rdf:type schema:Person
116 sg:person.013313712055.92 schema:affiliation grid-institutes:grid.5333.6
117 schema:familyName Özen
118 schema:givenName Onur
119 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013313712055.92
120 rdf:type schema:Person
121 sg:person.013536203777.69 schema:affiliation grid-institutes:grid.5596.f
122 schema:familyName Varıcı
123 schema:givenName Kerem
124 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013536203777.69
125 rdf:type schema:Person
126 sg:person.014732232610.32 schema:affiliation grid-institutes:grid.6571.5
127 schema:familyName Phan
128 schema:givenName Raphael C. -W.
129 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014732232610.32
130 rdf:type schema:Person
131 sg:person.07653531142.18 schema:affiliation grid-institutes:grid.410380.e
132 schema:familyName Meier
133 schema:givenName Willi
134 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07653531142.18
135 rdf:type schema:Person
136 grid-institutes:grid.410380.e schema:alternateName FHNW, Klosterzelgstrasse 2, 5210, Windisch, Switzerland
137 schema:name FHNW, Klosterzelgstrasse 2, 5210, Windisch, Switzerland
138 rdf:type schema:Organization
139 grid-institutes:grid.5333.6 schema:alternateName EPFL IC LACAL, Station 14, 1015, Lausanne, Switzerland
140 schema:name EPFL IC LACAL, Station 14, 1015, Lausanne, Switzerland
141 rdf:type schema:Organization
142 grid-institutes:grid.5596.f schema:alternateName Dept. of Electrical Engineering, K.U.Leuven, ESAT/SCD/COSIC and IBBT Kasteelpark Arenberg 10, 3001, Heverlee, Belgium
143 schema:name Dept. of Electrical Engineering, K.U.Leuven, ESAT/SCD/COSIC and IBBT Kasteelpark Arenberg 10, 3001, Heverlee, Belgium
144 rdf:type schema:Organization
145 grid-institutes:grid.6571.5 schema:alternateName Electronic and Electrical Engineering, Loughborough Uni, LE11 3TU, UK
146 schema:name Electronic and Electrical Engineering, Loughborough Uni, LE11 3TU, UK
147 rdf:type schema:Organization
148 grid-institutes:grid.6935.9 schema:alternateName Institute of Applied Mathematics, Middle East Technical University, 06531, Ankara, Turkey
149 schema:name Institute of Applied Mathematics, Middle East Technical University, 06531, Ankara, Turkey
150 rdf:type schema:Organization
 




Preview window. Press ESC to close (or click here)


...