About

Log in?

DTU users get better search results including licensed content and discounts on order fees.

Anyone can log in and get personalized features such as favorites, tags and feeds.

Log in as DTU user Log in as non-DTU user No thanks

DTU Findit
Boolean: (bicycle AND helmet) OR (head AND protection) (always group AND in parenthesis)
Title: title:(climate change)
Author: author:("bohr niels" OR "bohr n") (avoid only full first name)
Phrase: "water pump control" (does not work with wildcards)
Wildcards: wom?n pharm*

More help on how to search

Flexible matching

About search syntax

Search syntax Advanced
Close advanced
{{problem}}
By field Using AND/OR By author
This tool can help you build boolean queries suitable for doing a broad search for different synonyms or spellings of each word. Start via the drop-down below or just start typing in the search field.
{{ row.typeTitle }}: ( )

Since our index often lack the full first name of people it can be difficult to correctly search by author.

Fill in the fields and let us help you build a good query:

If you need to find everything possible, consider only searching by last name.

Use "Starting year" to ignore publications out of year range.

More...

Conference paper

Rebound Attack on the Full LANE Compression Function

By Matusiewicz, Krystian1,2; Naya-Plasencia, Maria3; Nikolic, Ivica4; Sasaki, Yu5; Martin Schlaeffer, Martin6

Edited by Matsui, Mitsuru

From

Discrete mathematics, Department of Mathematics, Technical University of Denmark1

Department of Mathematics, Technical University of Denmark2

French National Institute for Computer Science and Applied Mathematics3

University of Luxembourg4

NTT Corporation5

Graz University of Technology6

In this work, we apply the rebound attack to the AES based SHA-3 candidate Lane. The hash function Lane uses a permutation based compression function, consisting of a linear message expansion and 6 parallel lanes. In the rebound attack on Lane, we apply several new techniques to construct a collision for the full compression function of Lane-256 and Lane-512.

Using a relatively sparse truncated differential path, we are able to solve for a valid message expansion and colliding lanes independently. Additionally, we are able to apply the inbound phase more than once by exploiting the degrees of freedom in the parallel AES states. This allows us to construct semi-free-start collisions for full Lane-256 with 2^96 compression function evaluations and 2^88 memory, and for full Lane-512 with 2^224 compression function evaluations and 2^128 memory.

Language: English
Publisher: Springer
Year: 2009
Edition: 1
Pages: 106-125
Proceedings: 15th Annual International Conference on the Theory and Application of Cryptology and Information Security
Series: Lecture Notes in Computer Science
ISBN: 3642103650 , 3642103669 , 9783642103650 and 9783642103667
ISSN: 03029743
Types: Conference paper
DOI: 10.1007/978-3-642-10366-7_7
Keywords

LANE SHA-3 cryptanalysis hash function rebound attack semi-free-start collision

DTU users get better search results including licensed content and discounts on order fees.

Log in as DTU user

Access

Analysis