Sciweavers

FSE
2003
Springer

A New Class of Collision Attacks and Its Application to DES

14 years 4 months ago
A New Class of Collision Attacks and Its Application to DES
Until now in cryptography the term collision was mainly associated with the surjective mapping of different inputs to an equal output of a hash function. Previous collision attacks were only able to detect collisions at the output of a particular function. In this publication we introduce a new class of attacks which originates from Hans Dobbertin and is based on the fact that side channel analysis can be used to detect internal collisions. We applied our attack against the widely used Data Encryption Standard (DES). We exploit the fact that internal collisions can be caused in three adjacent S-Boxes of DES [DDQ84] in order to gain information about the secret key-bits. As result, we were able to exploit an internal collision with a minimum of 140 encryptions1 yielding 10.2 key-bits. Moreover, we successfully applied the attack to a smart card processor.
Kai Schramm, Thomas J. Wollinger, Christof Paar
Added 06 Jul 2010
Updated 06 Jul 2010
Type Conference
Year 2003
Where FSE
Authors Kai Schramm, Thomas J. Wollinger, Christof Paar
Comments (0)