|
This article is cited in 4 scientific papers (total in 4 papers)
Streebog compression function as PRF in secret-key settings
V. A. Kiryukhinab a JSC «InfoTeCS», Moscow
b LLC «SFB Lab», Moscow
Abstract:
Security of the many keyed hash-based cryptographic constructions (such as HMAC) depends on the fact that the underlying compression function $\mathsf{g}(H,M)$ is a pseudorandom function (PRF). This paper presents key-recovery algorithms for 7 rounds (of 12) of Streebog compression function. Two cases were considered, as a secret key can be used: the previous state $H$ or the message block $M$. The proposed methods implicitly show that Streebog compression function has a large security margin as PRF in the above-mentioned secret-key settings.
Key words:
Streebog, PRF, truncated differentials, rebound, polytopic cryptanalysis.
Received 10.XI.2021
Citation:
V. A. Kiryukhin, “Streebog compression function as PRF in secret-key settings”, Mat. Vopr. Kriptogr., 13:2 (2022), 99–116
Linking options:
https://www.mathnet.ru/eng/mvk410https://doi.org/10.4213/mvk410 https://www.mathnet.ru/eng/mvk/v13/i2/p99
|
|