Preimage Attacks on Step-Reduced MD5

Authors:
Yu Sasaki;Kazumaro Aoki
Affiliations:
NTT Information Sharing Platform Laboratories, NTT Corporation, , Tokyo, Japan 180-8585;NTT Information Sharing Platform Laboratories, NTT Corporation, , Tokyo, Japan 180-8585
Venue:
ACISP '08 Proceedings of the 13th Australasian conference on Information Security and Privacy
Year:
2008

Citing 12
Cited 7

Collisions for the compression function of MD5

EUROCRYPT '93 Workshop on the theory and application of cryptographic techniques on Advances in cryptology
Handbook of Applied Cryptography

Handbook of Applied Cryptography
The First Two Rounds of MD4 are Not One-Way

FSE '98 Proceedings of the 5th International Workshop on Fast Software Encryption
Improved Collision Attacks on MD4 and MD5

IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
MD4 is Not One-Way

Fast Software Encryption
Improved collision attack on hash function MD5

Journal of Computer Science and Technology
Inversion attacks on secure hash functions using SAT solvers

SAT'07 Proceedings of the 10th international conference on Theory and applications of satisfiability testing
Multi-collision attack on the compression functions of MD4 and 3-pass HAVAL

ICISC'07 Proceedings of the 10th international conference on Information security and cryptology
Formalizing human ignorance

VIETCRYPT'06 Proceedings of the First international conference on Cryptology in Vietnam
Preimage and collision attacks on MD2

FSE'05 Proceedings of the 12th international conference on Fast Software Encryption
A study of the MD5 attacks: insights and improvements

FSE'06 Proceedings of the 13th international conference on Fast Software Encryption
How to break MD5 and other hash functions

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques

A Preimage Attack for 52-Step HAS-160

Information Security and Cryptology --- ICISC 2008
Finding Preimages in Full MD5 Faster Than Exhaustive Search

EUROCRYPT '09 Proceedings of the 28th Annual International Conference on Advances in Cryptology: the Theory and Applications of Cryptographic Techniques
Preimage attacks on reduced steps of ARIRANG and PKC98-hash

ICISC'09 Proceedings of the 12th international conference on Information security and cryptology
Collisions of MMO-MD5 and their impact on original MD5

AFRICACRYPT'11 Proceedings of the 4th international conference on Progress in cryptology in Africa
Preimage attacks on step-reduced SM3 hash function

ICISC'11 Proceedings of the 14th international conference on Information Security and Cryptology
Bicliques for preimages: attacks on skein-512 and the SHA-2 family

FSE'12 Proceedings of the 19th international conference on Fast Software Encryption
Bicliques for permutations: collision and preimage attacks in stronger settings

ASIACRYPT'12 Proceedings of the 18th international conference on The Theory and Application of Cryptology and Information Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we propose preimage attacks on step-reduced MD5. We show that a preimage of a 44-step MD5 can be computed to a complexity of 296. We also consider a preimage attack against variants of MD5 where the round order is modified from the real MD5. In such a case, a preimage of a 51-step round-reordered MD5 can be computed to a complexity of 296. Our attack uses "local collisions" of MD5 to create a degree of message freedom. This freedom enables us to match the two 128-bit intermediate values efficiently.