The Boomerang Attacks on BLAKE and BLAKE2

Hao, Yonglin

doi:10.1007/978-3-319-16745-9_16

Cited by 6 publications

(4 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To assess the security of Blake and Blake2 hashing algorithms, the authors of Reference [7] used a boomerang attack and compare their complexity. Towards this goal, the authors proposed using a 7.5 round-based boomerang attack on Blake2s with a complexity of 2 184 .…”

Section: Computational Complexity Of Blake2mentioning

confidence: 99%

Vulnerabilities and Limitations of MQTT Protocol Used between IoT Devices

2019

View full text Add to dashboard Cite

With the proliferation of smart devices capable of communicating over a network using different protocols, each year more and more successful attacks are recorded against these, underlining the necessity of developing and implementing mechanisms to protect against such attacks. This paper will review some existing solutions used to secure a communication channel, such as Transport Layer Security or symmetric encryption, as well as provide a novel approach to achieving confidentiality and integrity of messages. The method, called Value-to-Keyed-Hash Message Authentication Code (Value-to-HMAC) mapping, uses signatures to send messages, instead of encryption, by implementing a Keyed-Hash Message Authentication Code generation algorithm. Although robust solutions exist that can be used to secure the communication between devices, this paper considers that not every Internet of Things (IoT) device or network design is able to afford the overhead and drop in performance, or even support such protocols. Therefore, the Value-to-HMAC method was designed to maximize performance while ensuring the messages are only readable by the intended node. The experimental procedure demonstrates how the method will achieve better performance than a symmetric-key encryption algorithm, while ensuring the confidentiality and integrity of information through the use of one mechanism.

show abstract

Section: Computational Complexity Of Blake2mentioning

confidence: 99%

Vulnerabilities and Limitations of MQTT Protocol Used between IoT Devices

2019

View full text Add to dashboard Cite

show abstract

“…Note: Many previous Type I boomerang results, such as , can only work on the compression functions ( CF of ) or the keyed permutations ( E of ) rather than the whole hash functions ( HF of ). But for LSH, it is equivalent to attack CF , E and HF due to the absence of the feed forward operation and the linearity of the F I N n finalization function.…”

Section: Boomerang Attacks On Round‐reduced Lsh Hash Functionsmentioning

confidence: 99%

“…Because LSH is an ARX hash function family (only using Modular Add “ +”, Rotation “

⋙

” and XOR “⊕”), we can use the XOR difference and deduce the difference linearly by replacing modular adds (“ +”) with the similar XOR (“⊕”). Besides, following the notations of , we present the differential characteristics in the numeric form and denote the zero difference by ϕ .…”

Section: Boomerang Attacks On Round‐reduced Lsh Hash Functionsmentioning

confidence: 99%

See 1 more Smart Citation

Cryptanalysis of the LSH hash functions

Hao

2016

Security Comm. Networks

Self Cite

View full text Add to dashboard Cite

In this paper, we study the security of the LSH hash functions. We find that the wide‐pipe MD‐structural LSH hash functions apply the 17th PGV scheme which is “backward attackable”. This property equips us with trivial attacks including pseudo‐preimage, free‐start collision, and Type II boomerang. These attacks can never be available to previous MD‐structural hash functions like Skein. We stress that such trivial attacks can only be regarded as distinguishers rather than real threat to the LSH in nowadays' practical applications. But we should still be cautious about the possible malicious use of LSH in specific situations in the future. We also launch 14‐round boomerang attacks on LSH‐512 and LSH‐256 hash functions with complexities 2308 and 2242, respectively. We verify the correctness of our boomerang attacks by giving practical 11‐round boomerang quartets. To the best of our knowledge, these are the first practically verifiable boomerang results on the LSH hash functions. These boomerang results indicate that the round functions of LSH are well designed. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

A review on lightweight cryptography for Internet-of-Things based applications

Rao

Prema

2020

J Ambient Intell Human Comput

View full text Add to dashboard Cite

The Boomerang Attacks on BLAKE and BLAKE2

Cited by 6 publications

References 21 publications

Vulnerabilities and Limitations of MQTT Protocol Used between IoT Devices

Vulnerabilities and Limitations of MQTT Protocol Used between IoT Devices

Cryptanalysis of the LSH hash functions

A review on lightweight cryptography for Internet-of-Things based applications

Contact Info

Product

Resources

About