Collisions on Feistel-MiMC and univariate GMiMC

Abstract : MiMC and GMiMC are families of MPC-friendly block ciphers and hash functions. In this note, we show that the block ciphers MiMC-2n/n (or Feistel-MiMC) and univariate GMiMC are vulnerable to an attack which allows a key recovery in $2^{n/2}$ operations. This attack, which is reminiscent of a slide attack, only relies on their weak key schedules, and is independent of the round function ($x^3$ here) and the number of rounds.
Document type :
Preprints, Working Papers, ...
Complete list of metadatas

Cited literature [5 references]  Display  Hide  Download

https://hal.inria.fr/hal-02400343
Contributor : Xavier Bonnetain <>
Submitted on : Monday, December 9, 2019 - 2:34:19 PM
Last modification on : Saturday, December 21, 2019 - 1:14:43 AM

File

mimc-collision.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-02400343, version 1

Collections

Citation

Xavier Bonnetain. Collisions on Feistel-MiMC and univariate GMiMC. 2019. ⟨hal-02400343⟩

Share

Metrics

Record views

13

Files downloads

69