Breaking a New Hash Function Design Strategy Called SMASH

Norbert Pramstaller,Christian Rechberger,Vincent Rijmen
DOI: https://doi.org/10.1007/11693383_16
2006-01-01
Abstract:We present a collision attack on SMASH. SMASH was proposed as a new hash function design strategy that does not rely on the structure of the MD4 family. The presented attack method allows us to produce almost any desired difference in the chaining variables of the iterated hash function. Due to the absence of a secret key, we are able to construct differences with probability 1. Furthermore, we get only few constraints on the colliding messages, which allows us to construct meaningful collisions. The presented collision attack uses negligible resources and we conjecture that it works for all hash functions built following the design strategy of SMASH.
What problem does this paper attempt to address?