Related-Key Rectangle Attack on the Full SHACAL-1

Orr Dunkelman, N. Keller, Jongsung Kim

Research output: Chapter in Book/Report/Conference proceedingChapterpeer-review


SHACAL-1 is a 160-bit block cipher with variable key length of up to 512-bit key based on the hash function SHA-1. It was submitted to the NESSIE project and was accepted as a finalist for the 2nd phase of the evaluation. In this paper we devise the first known attack on the full 80-round SHACAL-1 faster than exhaustive key search. The related-key differentials used in the attack are based on transformation of the collision-producing differentials of SHA-1 presented by Wang et al.
Original languageAmerican English
Title of host publicationSelected Areas in Cryptography
EditorsEli Biham, Amr M. Youssef
Place of PublicationBerlin Heidelberg
StatePublished - 2007

Publication series

NameLecture Notes in Computer Science


Dive into the research topics of 'Related-Key Rectangle Attack on the Full SHACAL-1'. Together they form a unique fingerprint.

Cite this