This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
mcmambo [21/03/2014 08:06:29] mmeh [Cryptanalysis] |
mcmambo [11/04/2014 07:51:23] mmeh [Cryptanalysis] |
||
---|---|---|---|
Line 6: | Line 6: | ||
===== Cryptanalysis ===== | ===== Cryptanalysis ===== | ||
- | Samuel Neves points out in [[https://groups.google.com/forum/#!topic/crypto-competitions/ysiDA5Qqfrs|this thread]] a high-probability differential for the block cipher underlying McMambo. The designer acknowledges this as a forgery attack with success probability 2^{-24}, thus calling McMambo "dead". | + | ^ Type ^ Probability ^ Reference ^ |
+ | | Differential attack on block cipher | $2^{-24}$ | Neves [[https://groups.google.com/forum/#!topic/crypto-competitions/ysiDA5Qqfrs|on newsgroup]] | | ||
+ |