Preimage attack on hash function RIPEMD

Gaoli Wang; Shaohui Wang

doi:10.1007/978-3-642-00843-6_24

Preimage attack on hash function RIPEMD

Gaoli Wang^*
, Shaohui Wang

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

8 Scopus citations

Abstract

RIPEMD is a cryptographic hash function devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988-1992). It consists of two parallel lines, and each line is identical to MD4 except for some internal constants. It has been broken by the collision attack, but no preimage attack was given. In this paper, we give a preimage attack on the compression function of the 26-step reduced RIPEMD with complexity 2¹¹⁰ compression function computations, and we extend the attack on the compression function to an attack on the 26-step reduced RIPEMD with complexity 2^115.2 instead of 2¹²⁸. Then we extend the attack on 26 steps to the attack on 29 steps with the same complexity. Moreover, we can reduce the complexity of the preimage attack on the full RIPEMD without the padding rule by 1 bit compared with the brute-force attack.

Original language	English
Title of host publication	Information Security Practice and Experience - 5th International Conference, ISPEC 2009, Proceedings
Pages	274-284
Number of pages	11
DOIs	https://doi.org/10.1007/978-3-642-00843-6_24
State	Published - 2009
Externally published	Yes
Event	5th International Conference on Information Security Practice and Experience, ISPEC 2009 - Xi'an, China Duration: 13 Apr 2009 → 15 Apr 2009

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	5451 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	5th International Conference on Information Security Practice and Experience, ISPEC 2009
Country/Territory	China
City	Xi'an
Period	13/04/09 → 15/04/09

Keywords

Cryptanalysis
Hash function
Preimage attack
RIPEMD

Access to Document

10.1007/978-3-642-00843-6_24

Cite this

Wang, G., & Wang, S. (2009). Preimage attack on hash function RIPEMD. In Information Security Practice and Experience - 5th International Conference, ISPEC 2009, Proceedings (pp. 274-284). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5451 LNCS). https://doi.org/10.1007/978-3-642-00843-6_24

@inproceedings{4ad21ad969f84f39b898b608fc9e4b3a,

title = "Preimage attack on hash function RIPEMD",

abstract = "RIPEMD is a cryptographic hash function devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988-1992). It consists of two parallel lines, and each line is identical to MD4 except for some internal constants. It has been broken by the collision attack, but no preimage attack was given. In this paper, we give a preimage attack on the compression function of the 26-step reduced RIPEMD with complexity 2110 compression function computations, and we extend the attack on the compression function to an attack on the 26-step reduced RIPEMD with complexity 2115.2 instead of 2128. Then we extend the attack on 26 steps to the attack on 29 steps with the same complexity. Moreover, we can reduce the complexity of the preimage attack on the full RIPEMD without the padding rule by 1 bit compared with the brute-force attack.",

keywords = "Cryptanalysis, Hash function, Preimage attack, RIPEMD",

author = "Gaoli Wang and Shaohui Wang",

year = "2009",

doi = "10.1007/978-3-642-00843-6\_24",

language = "英语",

isbn = "3642008429",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "274--284",

booktitle = "Information Security Practice and Experience - 5th International Conference, ISPEC 2009, Proceedings",

note = "5th International Conference on Information Security Practice and Experience, ISPEC 2009 ; Conference date: 13-04-2009 Through 15-04-2009",

}

Wang, G & Wang, S 2009, Preimage attack on hash function RIPEMD. in Information Security Practice and Experience - 5th International Conference, ISPEC 2009, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 5451 LNCS, pp. 274-284, 5th International Conference on Information Security Practice and Experience, ISPEC 2009, Xi'an, China, 13/04/09. https://doi.org/10.1007/978-3-642-00843-6_24

Preimage attack on hash function RIPEMD. / Wang, Gaoli; Wang, Shaohui.
Information Security Practice and Experience - 5th International Conference, ISPEC 2009, Proceedings. 2009. p. 274-284 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5451 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Preimage attack on hash function RIPEMD

AU - Wang, Gaoli

AU - Wang, Shaohui

PY - 2009

Y1 - 2009

N2 - RIPEMD is a cryptographic hash function devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988-1992). It consists of two parallel lines, and each line is identical to MD4 except for some internal constants. It has been broken by the collision attack, but no preimage attack was given. In this paper, we give a preimage attack on the compression function of the 26-step reduced RIPEMD with complexity 2110 compression function computations, and we extend the attack on the compression function to an attack on the 26-step reduced RIPEMD with complexity 2115.2 instead of 2128. Then we extend the attack on 26 steps to the attack on 29 steps with the same complexity. Moreover, we can reduce the complexity of the preimage attack on the full RIPEMD without the padding rule by 1 bit compared with the brute-force attack.

AB - RIPEMD is a cryptographic hash function devised in the framework of the RIPE project (RACE Integrity Primitives Evaluation, 1988-1992). It consists of two parallel lines, and each line is identical to MD4 except for some internal constants. It has been broken by the collision attack, but no preimage attack was given. In this paper, we give a preimage attack on the compression function of the 26-step reduced RIPEMD with complexity 2110 compression function computations, and we extend the attack on the compression function to an attack on the 26-step reduced RIPEMD with complexity 2115.2 instead of 2128. Then we extend the attack on 26 steps to the attack on 29 steps with the same complexity. Moreover, we can reduce the complexity of the preimage attack on the full RIPEMD without the padding rule by 1 bit compared with the brute-force attack.

KW - Cryptanalysis

KW - Hash function

KW - Preimage attack

KW - RIPEMD

UR - https://www.scopus.com/pages/publications/70350657197

U2 - 10.1007/978-3-642-00843-6_24

DO - 10.1007/978-3-642-00843-6_24

M3 - 会议稿件

AN - SCOPUS:70350657197

SN - 3642008429

SN - 9783642008429

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 274

EP - 284

BT - Information Security Practice and Experience - 5th International Conference, ISPEC 2009, Proceedings

T2 - 5th International Conference on Information Security Practice and Experience, ISPEC 2009

Y2 - 13 April 2009 through 15 April 2009

ER -

Preimage attack on hash function RIPEMD

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this