文摘
In ACISP 2008, the hash family DASH has been proposed by Billet et al., which considers the design of Rijndael and RC6. DASH family has two variants that support 256-bit and 512-bit output length respectively. This paper presents the first third-party cryptanalysis of DASH-256 with a focus on the underlying block cipher $ {{\mathcal{A}}_{256 }} $ . In particular, we study the distinguisher using differential and boomerang attack. As a result, we build a distinguishing attack for the compression function of DASH-256 with 8-round $ {{\mathcal{A}}_{256 }} $ using the differential cryptanalysis. Finally, we obtain a boomerang distinguisher of 9-round $ {{\mathcal{A}}_{256 }} $ .