Improving MDC-4 to Be More Secure
Summary :
MDC-4 is the enhanced version of MDC-2, which is a well-known hash mode of block ciphers. However, it does not guarantee sufficient securities required for a cryptographic hash function. In the ideal cipher model, the MDC-4 compression function has the collision security bound close to 25n/8 and the preimage security bound close to 25n/4, where the underlying block cipher has the block size of n bits. We have studied how to improve MDC-4 with simple modification to strengthen its security. It is meaningful work because users often want to improve their familiar systems with low cost. In this paper, we achieve it by proposing MDC-4+, which is a light variation of MDC-4. We prove that MDC-4+ is much more secure than MDC-4 by showing that it has the collision security bound close to optimal 2n and the preimage security bound close to 24n/3. We also discuss its efficiency by comparing existing hash modes.
- Publication
- IEICE TRANSACTIONS on Fundamentals Vol.E102-A No.1 pp.278-289
- Publication Date
- 2019/01/01
- Publicized
- Online ISSN
- 1745-1337
- DOI
- 10.1587/transfun.E102.A.278
- Type of Manuscript
- PAPER
- Category
- Cryptography and Information Security
Authors
Deukjo HONG
Chonbuk National University
Dong-Chan KIM
Kookmin University
Daesung KWON
the Attached Institute of ETRI
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Deukjo HONG, Dong-Chan KIM, Daesung KWON, "Improving MDC-4 to Be More Secure" in IEICE TRANSACTIONS on Fundamentals,
vol. E102-A, no. 1, pp. 278-289, January 2019, doi: 10.1587/transfun.E102.A.278.
Abstract: MDC-4 is the enhanced version of MDC-2, which is a well-known hash mode of block ciphers. However, it does not guarantee sufficient securities required for a cryptographic hash function. In the ideal cipher model, the MDC-4 compression function has the collision security bound close to 25n/8 and the preimage security bound close to 25n/4, where the underlying block cipher has the block size of n bits. We have studied how to improve MDC-4 with simple modification to strengthen its security. It is meaningful work because users often want to improve their familiar systems with low cost. In this paper, we achieve it by proposing MDC-4+, which is a light variation of MDC-4. We prove that MDC-4+ is much more secure than MDC-4 by showing that it has the collision security bound close to optimal 2n and the preimage security bound close to 24n/3. We also discuss its efficiency by comparing existing hash modes.
URL: https://global.ieice.org/en_transactions/fundamentals/10.1587/transfun.E102.A.278/_p
Copy
@ARTICLE{e102-a_1_278,
author={Deukjo HONG, Dong-Chan KIM, Daesung KWON, },
journal={IEICE TRANSACTIONS on Fundamentals},
title={Improving MDC-4 to Be More Secure},
year={2019},
volume={E102-A},
number={1},
pages={278-289},
abstract={MDC-4 is the enhanced version of MDC-2, which is a well-known hash mode of block ciphers. However, it does not guarantee sufficient securities required for a cryptographic hash function. In the ideal cipher model, the MDC-4 compression function has the collision security bound close to 25n/8 and the preimage security bound close to 25n/4, where the underlying block cipher has the block size of n bits. We have studied how to improve MDC-4 with simple modification to strengthen its security. It is meaningful work because users often want to improve their familiar systems with low cost. In this paper, we achieve it by proposing MDC-4+, which is a light variation of MDC-4. We prove that MDC-4+ is much more secure than MDC-4 by showing that it has the collision security bound close to optimal 2n and the preimage security bound close to 24n/3. We also discuss its efficiency by comparing existing hash modes.},
keywords={},
doi={10.1587/transfun.E102.A.278},
ISSN={1745-1337},
month={January},}
Copy
TY - JOUR
TI - Improving MDC-4 to Be More Secure
T2 - IEICE TRANSACTIONS on Fundamentals
SP - 278
EP - 289
AU - Deukjo HONG
AU - Dong-Chan KIM
AU - Daesung KWON
PY - 2019
DO - 10.1587/transfun.E102.A.278
JO - IEICE TRANSACTIONS on Fundamentals
SN - 1745-1337
VL - E102-A
IS - 1
JA - IEICE TRANSACTIONS on Fundamentals
Y1 - January 2019
AB - MDC-4 is the enhanced version of MDC-2, which is a well-known hash mode of block ciphers. However, it does not guarantee sufficient securities required for a cryptographic hash function. In the ideal cipher model, the MDC-4 compression function has the collision security bound close to 25n/8 and the preimage security bound close to 25n/4, where the underlying block cipher has the block size of n bits. We have studied how to improve MDC-4 with simple modification to strengthen its security. It is meaningful work because users often want to improve their familiar systems with low cost. In this paper, we achieve it by proposing MDC-4+, which is a light variation of MDC-4. We prove that MDC-4+ is much more secure than MDC-4 by showing that it has the collision security bound close to optimal 2n and the preimage security bound close to 24n/3. We also discuss its efficiency by comparing existing hash modes.
ER -
English
