Title :
On Hashing with Tweakable Ciphers
Author :
Phan, Raphael C W ; Aumasson, Jean-Philippe
Author_Institution :
Loughborough Univ., Loughborough, UK
Abstract :
Cryptographic hash functions are often built on block ciphers in order to reduce the security analysis of the hash to that of the cipher, and to minimize the hardware size. Well known hash constructs are used in international standards like MD5 and SHA-1. Recently, researchers proposed new modes of operations for hash functions to protect against generic attacks, and it remains open how to base such functions on block ciphers. An attracting and intuitive choice is to combine previous constructions with tweakable block ciphers. We investigate such constructions, and show the surprising result that combining a provably secure mode of operation with a provably secure tweakable cipher does not guarantee the security of the constructed hash function. In fact, simple attacks can be possible when the interaction between secure components leaves some additional "freedom" to an adversary. Our techniques are derived from the principle of slide attacks, which were introduced for attacking block ciphers.
Keywords :
cryptography; MD5; SHA-1; cryptographic hash function; hash constructs; provably secure operation mode; security analysis; tweakable block cipher; tweakable cipher; Communications Society; Concrete; Cryptography; Digital signatures; Hardware; NIST; Proposals; Protection; Public key; Security;
Conference_Titel :
Communications, 2009. ICC '09. IEEE International Conference on
Conference_Location :
Dresden
Print_ISBN :
978-1-4244-3435-0
Electronic_ISBN :
1938-1883
DOI :
10.1109/ICC.2009.5199240
