Improved boomerang attacks on SM3

Dongxia Bai; Hongbo Yu; Gaoli Wang; Xiaoyun Wang

doi:10.1007/978-3-642-39059-3_17

Improved boomerang attacks on SM3

Dongxia Bai
, Hongbo Yu^*
, Gaoli Wang
, Xiaoyun Wang

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

7 Scopus citations

Abstract

The cryptographic hash function SM3 is designed by X. Wang et al. and published by Chinese Commercial Cryptography Administration Office for the use of electronic certification service system in China. It is based on the Merkle-Damgård design and is very similar to SHA-2 but includes some additional strengthening features. In this paper, we apply the boomerang attack to SM3 compression function, and present such distinguishers on up to 34/35/36/37 steps out of 64 steps, with time complexities 2^31.4, 2^33.6, 2^73.4 and 2⁹³ compression function calls respectively. Especially, we are able to obtain the examples of the distinguishers on 34-step and 35-step on a PC due to their practical complexities. In addition, incompatible problems in the recent boomerang attack are pointed out.

Original language	English
Title of host publication	Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings
Publisher	Springer Verlag
Pages	251-266
Number of pages	16
ISBN (Print)	9783642390586
DOIs	https://doi.org/10.1007/978-3-642-39059-3_17
State	Published - 2013
Externally published	Yes
Event	18th Australasian Conference on Information Security and Privacy, ACISP 2013 - Brisbane, QLD, Australia Duration: 1 Jul 2013 → 3 Jul 2013

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	7959 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	18th Australasian Conference on Information Security and Privacy, ACISP 2013
Country/Territory	Australia
City	Brisbane, QLD
Period	1/07/13 → 3/07/13

Keywords

SM3
boomerang attack
cryptanalysis
hash function

Access to Document

10.1007/978-3-642-39059-3_17

Cite this

Bai, D., Yu, H., Wang, G., & Wang, X. (2013). Improved boomerang attacks on SM3. In Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings (pp. 251-266). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7959 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-642-39059-3_17

@inproceedings{a727dce01b544ad99bfd2b6030a1c5b7,

title = "Improved boomerang attacks on SM3",

abstract = "The cryptographic hash function SM3 is designed by X. Wang et al. and published by Chinese Commercial Cryptography Administration Office for the use of electronic certification service system in China. It is based on the Merkle-Damg{\aa}rd design and is very similar to SHA-2 but includes some additional strengthening features. In this paper, we apply the boomerang attack to SM3 compression function, and present such distinguishers on up to 34/35/36/37 steps out of 64 steps, with time complexities 231.4, 233.6, 273.4 and 293 compression function calls respectively. Especially, we are able to obtain the examples of the distinguishers on 34-step and 35-step on a PC due to their practical complexities. In addition, incompatible problems in the recent boomerang attack are pointed out.",

keywords = "SM3, boomerang attack, cryptanalysis, hash function",

author = "Dongxia Bai and Hongbo Yu and Gaoli Wang and Xiaoyun Wang",

year = "2013",

doi = "10.1007/978-3-642-39059-3\_17",

language = "英语",

isbn = "9783642390586",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "251--266",

booktitle = "Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings",

address = "德国",

note = "18th Australasian Conference on Information Security and Privacy, ACISP 2013 ; Conference date: 01-07-2013 Through 03-07-2013",

}

Bai, D, Yu, H, Wang, G & Wang, X 2013, Improved boomerang attacks on SM3. in Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7959 LNCS, Springer Verlag, pp. 251-266, 18th Australasian Conference on Information Security and Privacy, ACISP 2013, Brisbane, QLD, Australia, 1/07/13. https://doi.org/10.1007/978-3-642-39059-3_17

Improved boomerang attacks on SM3. / Bai, Dongxia; Yu, Hongbo; Wang, Gaoli et al.
Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings. Springer Verlag, 2013. p. 251-266 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7959 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Improved boomerang attacks on SM3

AU - Bai, Dongxia

AU - Yu, Hongbo

AU - Wang, Gaoli

AU - Wang, Xiaoyun

PY - 2013

Y1 - 2013

N2 - The cryptographic hash function SM3 is designed by X. Wang et al. and published by Chinese Commercial Cryptography Administration Office for the use of electronic certification service system in China. It is based on the Merkle-Damgård design and is very similar to SHA-2 but includes some additional strengthening features. In this paper, we apply the boomerang attack to SM3 compression function, and present such distinguishers on up to 34/35/36/37 steps out of 64 steps, with time complexities 231.4, 233.6, 273.4 and 293 compression function calls respectively. Especially, we are able to obtain the examples of the distinguishers on 34-step and 35-step on a PC due to their practical complexities. In addition, incompatible problems in the recent boomerang attack are pointed out.

AB - The cryptographic hash function SM3 is designed by X. Wang et al. and published by Chinese Commercial Cryptography Administration Office for the use of electronic certification service system in China. It is based on the Merkle-Damgård design and is very similar to SHA-2 but includes some additional strengthening features. In this paper, we apply the boomerang attack to SM3 compression function, and present such distinguishers on up to 34/35/36/37 steps out of 64 steps, with time complexities 231.4, 233.6, 273.4 and 293 compression function calls respectively. Especially, we are able to obtain the examples of the distinguishers on 34-step and 35-step on a PC due to their practical complexities. In addition, incompatible problems in the recent boomerang attack are pointed out.

KW - SM3

KW - boomerang attack

KW - cryptanalysis

KW - hash function

UR - https://www.scopus.com/pages/publications/84884476753

U2 - 10.1007/978-3-642-39059-3_17

DO - 10.1007/978-3-642-39059-3_17

M3 - 会议稿件

AN - SCOPUS:84884476753

SN - 9783642390586

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 251

EP - 266

BT - Information Security and Privacy - 18th Australasian Conference, ACISP 2013, Proceedings

PB - Springer Verlag

T2 - 18th Australasian Conference on Information Security and Privacy, ACISP 2013

Y2 - 1 July 2013 through 3 July 2013

ER -

Improved boomerang attacks on SM3

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this