Improved preimage attack for 68-step HAS-160

Deukjo Hong, Bonwook Koo, Yu Sasaki

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

22 Scopus citations

Abstract

In this paper, we improve previous preimage attacks on hash function HAS-160, which is standardized in Korea. We show that the last 68 steps out of 80 steps of HAS-160 can be attacked, while a previous attack works for only intermediate 52 steps. We also show that the first 67 steps of HAS-160 can be attacked. These attacks are based on the meet-in-the-middle attack, which is also used in the previous attack. Recently, various techniques of preimage attacks have been proposed on other hash functions. We show that these techniques can also be applied to HAS-160 and the number of attacked steps can be improved. For the attack on 68 steps, we first generate pseudo-preimages with a complexity of 2150.7, and then convert them to a preimage with a complexity of 2156.3. This attack uses a memory of 212 ×7 words. To the best of our knowledge, attacking 68 steps is the best of all attacks on HAS-160 hash function.

Original languageEnglish
Title of host publicationInformation Security and Cryptology - ICISC 2009 - 12th International Conference, Revised Selected Papers
Pages332-348
Number of pages17
DOIs
StatePublished - 2010
Event12th International Conference on Information Security and Cryptology, ICISC 2009 - Seoul, Korea, Republic of
Duration: 2 Dec 20094 Dec 2009

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume5984 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference12th International Conference on Information Security and Cryptology, ICISC 2009
Country/TerritoryKorea, Republic of
CitySeoul
Period2/12/094/12/09

Keywords

  • HAS-160
  • hash function
  • meet-in-the-middle
  • preimage

Fingerprint

Dive into the research topics of 'Improved preimage attack for 68-step HAS-160'. Together they form a unique fingerprint.

Cite this