{"id":"https://openalex.org/W3146202142","doi":"https://doi.org/10.46586/tosc.v2021.i1.239-268","title":"Algebraic Collision Attacks on Keccak","display_name":"Algebraic Collision Attacks on Keccak","publication_year":2021,"publication_date":"2021-03-19","ids":{"openalex":"https://openalex.org/W3146202142","doi":"https://doi.org/10.46586/tosc.v2021.i1.239-268","mag":"3146202142"},"language":"en","primary_location":{"id":"doi:10.46586/tosc.v2021.i1.239-268","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2021.i1.239-268","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/8839/8442","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://tosc.iacr.org/index.php/ToSC/article/download/8839/8442","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5006209073","display_name":"Rachelle Heim Boissier","orcid":null},"institutions":[{"id":"https://openalex.org/I277688954","display_name":"Universit\u00e9 Paris-Saclay","ror":"https://ror.org/03xjwb503","country_code":"FR","type":"education","lineage":["https://openalex.org/I277688954"]},{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"funder","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I4387152735","display_name":"Laboratoire de Math\u00e9matiques de Versailles","ror":"https://ror.org/04k5jw363","country_code":null,"type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I195731000","https://openalex.org/I277688954","https://openalex.org/I4387152735"]},{"id":"https://openalex.org/I195731000","display_name":"Universit\u00e9 de Versailles Saint-Quentin-en-Yvelines","ror":"https://ror.org/03mkjjy25","country_code":"FR","type":"education","lineage":["https://openalex.org/I195731000","https://openalex.org/I277688954"]}],"countries":["FR"],"is_corresponding":true,"raw_author_name":"Rachelle Heim Boissier","raw_affiliation_strings":["Universit\u00e9 Paris-Saclay, UVSQ, CNRS, Laboratoire de math\u00e9matiques de Versailles, 78000, Versailles, France"],"affiliations":[{"raw_affiliation_string":"Universit\u00e9 Paris-Saclay, UVSQ, CNRS, Laboratoire de math\u00e9matiques de Versailles, 78000, Versailles, France","institution_ids":["https://openalex.org/I277688954","https://openalex.org/I195731000","https://openalex.org/I1294671590","https://openalex.org/I4387152735"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076793466","display_name":"Camille No\u00fbs","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Camille No\u00fbs","raw_affiliation_strings":["Laboratoire Cogitamus"],"affiliations":[{"raw_affiliation_string":"Laboratoire Cogitamus","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5062744717","display_name":"Yann Rotella","orcid":null},"institutions":[{"id":"https://openalex.org/I195731000","display_name":"Universit\u00e9 de Versailles Saint-Quentin-en-Yvelines","ror":"https://ror.org/03mkjjy25","country_code":"FR","type":"education","lineage":["https://openalex.org/I195731000","https://openalex.org/I277688954"]},{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"funder","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I4387152735","display_name":"Laboratoire de Math\u00e9matiques de Versailles","ror":"https://ror.org/04k5jw363","country_code":null,"type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I195731000","https://openalex.org/I277688954","https://openalex.org/I4387152735"]},{"id":"https://openalex.org/I277688954","display_name":"Universit\u00e9 Paris-Saclay","ror":"https://ror.org/03xjwb503","country_code":"FR","type":"education","lineage":["https://openalex.org/I277688954"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Yann Rotella","raw_affiliation_strings":["Universit\u00e9 Paris-Saclay, UVSQ, CNRS, Laboratoire de math\u00e9matiques de Versailles, 78000, Versailles, France"],"affiliations":[{"raw_affiliation_string":"Universit\u00e9 Paris-Saclay, UVSQ, CNRS, Laboratoire de math\u00e9matiques de Versailles, 78000, Versailles, France","institution_ids":["https://openalex.org/I277688954","https://openalex.org/I195731000","https://openalex.org/I1294671590","https://openalex.org/I4387152735"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5006209073"],"corresponding_institution_ids":["https://openalex.org/I1294671590","https://openalex.org/I195731000","https://openalex.org/I277688954","https://openalex.org/I4387152735"],"apc_list":null,"apc_paid":null,"fwci":0.5439,"has_fulltext":true,"cited_by_count":6,"citation_normalized_percentile":{"value":0.71424848,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"239","last_page":"268"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11130","display_name":"Coding theory and cryptography","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/collision-attack","display_name":"Collision attack","score":0.7418227195739746},{"id":"https://openalex.org/keywords/cryptanalysis","display_name":"Cryptanalysis","score":0.6387019157409668},{"id":"https://openalex.org/keywords/collision","display_name":"Collision","score":0.6011435985565186},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5246344208717346},{"id":"https://openalex.org/keywords/algebraic-number","display_name":"Algebraic number","score":0.46667516231536865},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4620577096939087},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.4307175874710083},{"id":"https://openalex.org/keywords/s-box","display_name":"S-box","score":0.4152463972568512},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.31912925839424133},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.25737354159355164},{"id":"https://openalex.org/keywords/cryptographic-hash-function","display_name":"Cryptographic hash function","score":0.13884058594703674},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.12426546216011047},{"id":"https://openalex.org/keywords/double-hashing","display_name":"Double hashing","score":0.050743669271469116}],"concepts":[{"id":"https://openalex.org/C87538441","wikidata":"https://www.wikidata.org/wiki/Q389463","display_name":"Collision attack","level":5,"score":0.7418227195739746},{"id":"https://openalex.org/C181149355","wikidata":"https://www.wikidata.org/wiki/Q897511","display_name":"Cryptanalysis","level":3,"score":0.6387019157409668},{"id":"https://openalex.org/C121704057","wikidata":"https://www.wikidata.org/wiki/Q352070","display_name":"Collision","level":2,"score":0.6011435985565186},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5246344208717346},{"id":"https://openalex.org/C9376300","wikidata":"https://www.wikidata.org/wiki/Q168817","display_name":"Algebraic number","level":2,"score":0.46667516231536865},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4620577096939087},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.4307175874710083},{"id":"https://openalex.org/C45737032","wikidata":"https://www.wikidata.org/wiki/Q748364","display_name":"S-box","level":4,"score":0.4152463972568512},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.31912925839424133},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.25737354159355164},{"id":"https://openalex.org/C7608002","wikidata":"https://www.wikidata.org/wiki/Q477202","display_name":"Cryptographic hash function","level":3,"score":0.13884058594703674},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.12426546216011047},{"id":"https://openalex.org/C138111711","wikidata":"https://www.wikidata.org/wiki/Q478351","display_name":"Double hashing","level":4,"score":0.050743669271469116},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.46586/tosc.v2021.i1.239-268","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2021.i1.239-268","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/8839/8442","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},{"id":"pmh:oai:HAL:hal-03993040v1","is_oa":true,"landing_page_url":"https://hal.science/hal-03993040","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, 2021, 2021 (1), pp.239-268. ⟨10.46586/tosc.v2021.i1.239-268⟩","raw_type":"Journal articles"},{"id":"pmh:oai:doaj.org/article:831ffc80d35d4d5a826edd60ddd41b6c","is_oa":true,"landing_page_url":"https://doaj.org/article/831ffc80d35d4d5a826edd60ddd41b6c","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Transactions on Symmetric Cryptology, Vol 2021, Iss 1 (2021)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.46586/tosc.v2021.i1.239-268","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tosc.v2021.i1.239-268","pdf_url":"https://tosc.iacr.org/index.php/ToSC/article/download/8839/8442","source":{"id":"https://openalex.org/S4210236173","display_name":"IACR Transactions on Symmetric Cryptology","issn_l":"2519-173X","issn":["2519-173X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Symmetric Cryptology","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3146202142.pdf","grobid_xml":"https://content.openalex.org/works/W3146202142.grobid-xml"},"referenced_works_count":26,"referenced_works":["https://openalex.org/W5981243","https://openalex.org/W1553650484","https://openalex.org/W1569212589","https://openalex.org/W1915866835","https://openalex.org/W1968465898","https://openalex.org/W2003345268","https://openalex.org/W2026522166","https://openalex.org/W2162996307","https://openalex.org/W2185342914","https://openalex.org/W2292996153","https://openalex.org/W2550770775","https://openalex.org/W2594885244","https://openalex.org/W2604738385","https://openalex.org/W2725050237","https://openalex.org/W2780744150","https://openalex.org/W2794848448","https://openalex.org/W2795031214","https://openalex.org/W2795121257","https://openalex.org/W2914643373","https://openalex.org/W2925806937","https://openalex.org/W2970543938","https://openalex.org/W3044315994","https://openalex.org/W4243480298","https://openalex.org/W4247436719","https://openalex.org/W4248016407","https://openalex.org/W4308269287"],"related_works":["https://openalex.org/W2479441139","https://openalex.org/W1539666818","https://openalex.org/W3029301557","https://openalex.org/W2954599081","https://openalex.org/W1989313172","https://openalex.org/W2349647033","https://openalex.org/W4388441189","https://openalex.org/W2350273227","https://openalex.org/W2952774345","https://openalex.org/W2949599140"],"abstract_inverted_index":{"In":[0],"this":[1],"paper,":[2],"we":[3],"analyze":[4],"the":[5,9,42,46,56],"collision":[6,34],"resistance":[7],"of":[8,13,19,41,45,49,85],"two":[10,68],"smallest":[11],"versions":[12,58],"Keccak":[14,57,91],"which":[15],"have":[16],"a":[17,82],"width":[18],"200":[20],"and":[21,29,76,89],"400":[22],"bits":[23],"respectively.":[24],"We":[25,51],"show":[26],"that":[27,59],"algebraic":[28],"linearization":[30],"techniques":[31],"can":[32],"serve":[33],"cryptanalysis":[35],"by":[36],"using":[37],"some":[38],"interesting":[39],"properties":[40],"linear":[43],"part":[44],"round":[47],"function":[48],"Keccak.":[50],"present":[52],"an":[53],"attack":[54,80],"on":[55],"could":[60],"be":[61],"used":[62],"in":[63],"lightweight":[64],"cryptography":[65],"reduced":[66],"to":[67],"rounds.":[69],"For":[70],"Keccak[40,":[71],"160]":[72],"(resp.":[73,87],"Keccak[72,":[74],"128]":[75],"Keccak[144,":[77],"256])":[78],"our":[79],"has":[81],"computational":[83],"complexity":[84],"273":[86],"252.5":[88],"2101.5)":[90],"calls.":[92]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}