Collision attack on the full extended MD4 and pseudo-Preimage attack on RIPEMD

Gao Li Wang

doi:10.1007/s11390-013-1317-5

Collision attack on the full extended MD4 and pseudo-Preimage attack on RIPEMD

Gao Li Wang^*

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

2 Scopus citations

Abstract

The cryptographic hash functions Extended MD4 and RIPEMD are double-branch hash functions, which consist of two parallel branches. Extended MD4 was proposed by Rivest in 1990, and RIPEMD was devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988 ~ 1992). On the basis of differential analysis and meet-in-the-middle attack principle, this paper proposes a collision attack on the full Extended MD4 and a pseudo-preimage attack on the full RIPEMD respectively. The collision attack on Extended MD4 holds with a complexity of 2³⁷, and a collision instance is presented. The pseudo-preimage attack on RIPEMD holds with a complexity of 2^125:4, which optimizes the complexity order for brute-force attack. The results in this study will also be beneficial to the analysis of other double-branch hash functions such as RIPEMD-160.

Original language	English
Pages (from-to)	129-143
Number of pages	15
Journal	Journal of Computer Science and Technology
Volume	28
Issue number	1
DOIs	https://doi.org/10.1007/s11390-013-1317-5
State	Published - Jan 2013
Externally published	Yes

Keywords

Extended MD4
RIPEMD
collision attack
hash function
preimage attack

Access to Document

10.1007/s11390-013-1317-5

Cite this

@article{9bc6352bbc42420fa2162be7586b1ade,

title = "Collision attack on the full extended MD4 and pseudo-Preimage attack on RIPEMD",

abstract = "The cryptographic hash functions Extended MD4 and RIPEMD are double-branch hash functions, which consist of two parallel branches. Extended MD4 was proposed by Rivest in 1990, and RIPEMD was devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988 \textasciitilde{} 1992). On the basis of differential analysis and meet-in-the-middle attack principle, this paper proposes a collision attack on the full Extended MD4 and a pseudo-preimage attack on the full RIPEMD respectively. The collision attack on Extended MD4 holds with a complexity of 237, and a collision instance is presented. The pseudo-preimage attack on RIPEMD holds with a complexity of 2125:4, which optimizes the complexity order for brute-force attack. The results in this study will also be beneficial to the analysis of other double-branch hash functions such as RIPEMD-160.",

keywords = "Extended MD4, RIPEMD, collision attack, hash function, preimage attack",

author = "Wang, \{Gao Li\}",

year = "2013",

month = jan,

doi = "10.1007/s11390-013-1317-5",

language = "英语",

volume = "28",

pages = "129--143",

journal = "Journal of Computer Science and Technology",

issn = "1000-9000",

publisher = "Springer New York",

number = "1",

}

TY - JOUR

T1 - Collision attack on the full extended MD4 and pseudo-Preimage attack on RIPEMD

AU - Wang, Gao Li

PY - 2013/1

Y1 - 2013/1

N2 - The cryptographic hash functions Extended MD4 and RIPEMD are double-branch hash functions, which consist of two parallel branches. Extended MD4 was proposed by Rivest in 1990, and RIPEMD was devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988 ~ 1992). On the basis of differential analysis and meet-in-the-middle attack principle, this paper proposes a collision attack on the full Extended MD4 and a pseudo-preimage attack on the full RIPEMD respectively. The collision attack on Extended MD4 holds with a complexity of 237, and a collision instance is presented. The pseudo-preimage attack on RIPEMD holds with a complexity of 2125:4, which optimizes the complexity order for brute-force attack. The results in this study will also be beneficial to the analysis of other double-branch hash functions such as RIPEMD-160.

AB - The cryptographic hash functions Extended MD4 and RIPEMD are double-branch hash functions, which consist of two parallel branches. Extended MD4 was proposed by Rivest in 1990, and RIPEMD was devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988 ~ 1992). On the basis of differential analysis and meet-in-the-middle attack principle, this paper proposes a collision attack on the full Extended MD4 and a pseudo-preimage attack on the full RIPEMD respectively. The collision attack on Extended MD4 holds with a complexity of 237, and a collision instance is presented. The pseudo-preimage attack on RIPEMD holds with a complexity of 2125:4, which optimizes the complexity order for brute-force attack. The results in this study will also be beneficial to the analysis of other double-branch hash functions such as RIPEMD-160.

KW - Extended MD4

KW - RIPEMD

KW - collision attack

KW - hash function

KW - preimage attack

UR - https://www.scopus.com/pages/publications/84873367272

U2 - 10.1007/s11390-013-1317-5

DO - 10.1007/s11390-013-1317-5

M3 - 文章

AN - SCOPUS:84873367272

SN - 1000-9000

VL - 28

SP - 129

EP - 143

JO - Journal of Computer Science and Technology

JF - Journal of Computer Science and Technology

IS - 1

ER -

Collision attack on the full extended MD4 and pseudo-Preimage attack on RIPEMD

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this