Abstract
In this article, we analyze the security of the GOST hash function. The GOST hash function, defined in the Russian standard GOST 34.11-94, is an iterated hash function producing a 256-bit hash value. As opposed to most commonly used hash functions such as MD5 and SHA-1, the GOST hash function defines, in addition to the common iterative structure, a checksum computed over all input message blocks. This checksum is then part of the final hash value computation. As a result of our security analysis of the GOST hash function, we present the first collision attack with a complexity of about 2105 evaluations of the compression function. Furthermore, we are able to significantly improve upon the results of Mendel et al. with respect to preimage and second preimage attacks. Our improved attacks have a complexity of about 2192 evaluations of the compression function. © International Association for Cryptologic Research 2008.
Author supplied keywords
Cite
CITATION STYLE
Mendel, F., Pramstaller, N., Rechberger, C., Kontak, M., & Szmidt, J. (2008). Cryptanalysis of the GOST hash function. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5157 LNCS, pp. 162–178). https://doi.org/10.1007/978-3-540-85174-5_10
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
