In this paper, a higher order differential attack on the hash function Luffa v1 is discussed. We confirmed that the algebraic degree of the permutation Q j which is an important non-linear component of Luffa grows slower than an ideal case both by the theoretical and the experimental approaches. According to our estimate, we can construct a distinguisher for step-reduced variants of Luffa v1 up to 7 out of 8 steps by using a block message. The attack for 7 steps requires 2216 messages. As far as we know, this is the first report which investigates the algebraic property of Luffa v1. Besides, this attack does not pose any threat to the security of the full-step of Luffa v1 nor Luffa v2. © 2010 Springer-Verlag.
CITATION STYLE
Watanabe, D., Hatano, Y., Yamada, T., & Kaneko, T. (2010). Higher order differential attack on step-reduced variants of Luffa v1. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6147 LNCS, pp. 270–285). https://doi.org/10.1007/978-3-642-13858-4_15
Mendeley helps you to discover research relevant for your work.