作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2009, Vol. 35 ›› Issue (20): 140-141. doi: 10.3969/j.issn.1000-3428.2009.20.049

• 安全技术 • 上一篇    下一篇

对104步杂凑函数HAVAL的原根攻击

王高丽1,潘 乔1,杨茂江2   

  1. (1. 东华大学计算机科学与技术学院,上海 201620;2. 上海格尔软件股份有限公司,上海 200042)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2009-10-20 发布日期:2009-10-20

Preimage Attack on 104-step Hash Function HAVAL

WANG Gao-li1, PAN Qiao1, YANG Mao-jiang2   

  1. (1. School of Computer Science and Technology, Donghua University, Shanghai 201620; 2. Shanghai Koal Software Co., Ltd., Shanghai 200042)
  • Received:1900-01-01 Revised:1900-01-01 Online:2009-10-20 Published:2009-10-20

摘要: 针对杂凑函数HAVAL的第1圈中圈函数的性质和消息字的顺序,结合使用穷举搜索等方法,给出对前104步HAVAL压缩函数的原根攻击。其计算复杂度是2224次杂凑运算,需要存储238个字节,而穷举攻击的计算复杂度是2256次杂凑运算。分析结果对杂凑函数HAVAL安全性的评估有重要的参考价值。

关键词: 杂凑函数, HAVAL算法, 密码分析, 原根攻击

Abstract: According to the properties of the function in the first pass and the order of the message words in HAVAL algorithm, a preimage attack on the compression function of the first 104-step HAVAL is proposed by using the exhaustive search method. The complexity of the attack is 2224 hash function valuations with the storage of 238 Bytes. However, the complexity of brute-force to find preimage is 2256. Analysis result has some new light on the evaluation of the security of HAVAL.

Key words: hash function, HAVAL algorithm, cryptanalysis, preimage attack

中图分类号: