Projects per year
Abstract
We present collisions for a version of SHA-1 with modified constants, where the colliding payloads are valid binary files. Examples are given of colliding executables, archives, and images. Our malicious SHA-1 instances have round constants that differ from the original ones in only 40 bits (on average). Modified versions of cryptographic standards are typically used on closed systems (e.g., in pay-TV, media and gaming platforms) and aim to differentiate cryptographic components across customers or services. Our proof-of-concept thus demonstrates the exploitability of custom SHA-1 versions for malicious purposes, such as the injection of user surveillance features. To encourage further research on such malicious hash functions, we propose definitions of malicious hash functions and of associated security notions.
Original language | English |
---|---|
Title of host publication | Selected Areas in Cryptography |
Editors | Antoine Joux |
Publisher | Springer |
Pages | 1-19 |
Volume | 8781 |
DOIs | |
Publication status | Published - 2014 |
Event | International Workshop on Selected Areas in Cryptography: SAC 2014 - Montreal, Canada Duration: 14 Aug 2014 → 15 Aug 2014 |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Publisher | Springer |
Volume | 8781 |
Conference
Conference | International Workshop on Selected Areas in Cryptography |
---|---|
Country/Territory | Canada |
City | Montreal |
Period | 14/08/14 → 15/08/14 |
Fields of Expertise
- Information, Communication & Computing
Treatment code (Nähere Zuordnung)
- Basic - Fundamental (Grundlagenforschung)
Fingerprint
Dive into the research topics of 'Malicious Hashing: Eve's Variant of SHA-1'. Together they form a unique fingerprint.Projects
- 2 Finished
-
SePAG - Secure Privacy-Aware Solutions for Smart Grids
Mendel, F., Plos, T., Schmidt, J. & Kirschbaum, M.
1/07/12 → 30/09/14
Project: Research project
-
Cryptography
Schläffer, M., Oswald, M. E., Lipp, P., Dobraunig, C. E., Mendel, F., Eichlseder, M., Nad, T., Posch, R., Lamberger, M., Rijmen, V. & Rechberger, C.
1/01/95 → 31/01/19
Project: Research area