Skip to main content
Journal ArticleOPEN ACCESS

Security Analysis of BLAKE2’s Modes of Operation

  • Luykx A
  • Mennink B
  • Neves S
IACR Transactions on Symmetric Cryptology (2016) 158-176
DOI: 10.46586/tosc.v2016.i1.158-176
N/ACitations
Citations of this article
29Readers
Mendeley users who have this article in their library.

Abstract

BLAKE2 is a hash function introduced at ACNS 2013, which has been adopted in many constructions and applications. It is a successor to the SHA-3 finalist BLAKE, which received a significant amount of security analysis. Nevertheless, BLAKE2 introduces sufficient changes so that not all results from BLAKE carry over, meaning new analysis is necessary. To date, all known cryptanalysis done on BLAKE2 has focused on its underlying building blocks, with little focus placed on understanding BLAKE2’s generic security. We prove that BLAKE2’s compression function is indifferentiable from a random function in a weakly ideal cipher model, which was not the case for BLAKE. This implies that there are no generic attacks against any of the modes that BLAKE2 uses.

Cite

CITATION STYLE

APA

Luykx, A., Mennink, B., & Neves, S. (2016). Security Analysis of BLAKE2’s Modes of Operation. IACR Transactions on Symmetric Cryptology, 158–176. https://doi.org/10.46586/tosc.v2016.i1.158-176

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free