Publications

Proceedings
2012	Florian Mendel, Tomislav Nad, Martin Schläffer - *"Collision Attacks on the Reduced Dual-Stream Hash Function RIPEMD-128"* - 19th International Workshop on Fast Software Encryption (Note: to appear)
2011	Alex Biryukov, Mario Lamberger, Florian Mendel, Ivica Nikolic - *"Second-Order Differential Collisions for Reduced SHA-256"* - ASIACRYPT
2011	Tomislav Nad, Florian Mendel - *"Boomerang Distinguisher for the SIMD-512 Compression Function"* - Progress in Cryptology - INDOCRYPT 2011
2011	Stefan Kölbl, Florian Mendel - *"Practical Attacks on the Maelstrom-0 Compression Function"* - Applied Cryptography and Network Security
2011	Florian Mendel, Tomislav Nad, Martin Schläffer - *"Cryptanalysis of Round-Reduced HAS-160"* - The 14th International Conference On Information Security and Cryptology (Note: to appear)
2011	Kazumaro Aoki, Günther Roland, Yu Sasaki, Martin Schläffer - *"Byte Slicing Grøstl - Optimized Intel AES-NI and 8-bit Implementations of the SHA-3 Finalist Grøstl"* (Note: to appear)
2011	Florian Mendel, Tomislav Nad, Martin Schläffer - *"Finding SHA-2 Characteristics"* - ASIACRYPT
2010	Florian Mendel, Christian Rechberger, Martin Schläffer, Søren Steffen Thomsen - *"Rebound Attacks on the Reduced Grøstl Hash Function"* - Topics in Cryptology - CT-RSA 2010
2010	Yu Sasaki, Florian Mendel, Kazumaro Aoki - *"Preimage Attacks against PKC98-Hash and HAS-V "* - Information Security and Cryptology - ICISC 2010
2010	Praveen Gauravaram, Gaëtan Leurent, Florian Mendel, Maria Naya-Plasencia, Thomas Peyrin, Christian Rechberger, Martin Schläffer - *"Cryptanalysis of the 10-Round Hash and Full Compression Function of SHAvite-3-512"* - Africacrypt 2010
2010	Mario Lamberger, Vincent Rijmen - *"Optimal Covering Codes for Finding Near-Collisions"* - Selected Areas in Cryptography
2010	Dmitry Khovratovich, Maria Naya-Plasencia, Andrea Röck, Martin Schläffer - *"Cryptanalysis of Luffa v2 Components"* - Selected Areas in Cryptography
2010	Jean-Philippe Aumasson, Emilia Käsper, Lars Ramkilde Knudsen, Krystian Matusiewicz, Rune Ødegård, Thomas Peyrin, Martin Schläffer - *"Distinguishers for the Compression Function and Output Transformation of Hamsi-256"* - ACISP
2010	Martin Schläffer - *"Subspace Distinguisher for 5/8 Rounds of the ECHO-256 Hash Function"* - Selected Areas in Cryptography
2009	Florian Mendel, Martin Schläffer - *"On Free-Start Collisions and Collisions for TIB3"* - Information Security
2009	Florian Mendel, Christian Rechberger, Martin Schläffer - *"Cryptanalysis of Twister"* - Applied Cryptography and Network Security
2009	Florian Mendel, Thomas Peyrin, Christian Rechberger, Martin Schläffer - *"Improved Cryptanalysis of the Reduced Grøstl Compression Function, ECHO Permutation and AES Block Cipher"* - Selected Areas in Cryptography
2009	Tomislav Nad, Florian Mendel, Martin Schläffer - *"Collision Attack on Boole"* - Applied Cryptography and Network Security
2009	Florian Mendel - *"Two Passes of Tiger are not One-Way"* - Progress in Cryptology - AFRICACRYPT 2009
2009	Mario Lamberger, Florian Mendel, Christian Rechberger, Vincent Rijmen, Martin Schläffer - *"Rebound Distinguishers: Results on the Full Whirlpool Compression Function"* - Advances in Cryptology - ASIACRYPT 2009
2009	Christian Rechberger - *"Wie lange halten die SHA-2 Hashfunktionen kryptanalytischen Angriffen noch stand?"* - Tagungsband 11. Deutscher IT-Sicherheitskongress (Note: to appear)
2009	Mario Lamberger, Florian Mendel - *"Structural Attacks on Two SHA-3 Candidates: Blender-n and DCH-n"* - Information Security
2009	Lars R. Knudsen, Florian Mendel, Christian Rechberger, Søren Steffen Thomsen - *"Cryptanalysis of MDC-2"* - Advances in Cryptology - EUROCRYPT 2009
2009	Krystian Matusiewicz, Maria Naya-Plasencia, Nikolic Ivica, Yu Sasaki, Martin Schläffer - *"Rebound Attack on the Full LANE Compression Function"* - Advances in Cryptology - ASIACRYPT 2009
2009	Tomislav Nad, Florian Mendel - *"A Distinguisher for the Compression Function of SIMD-512"* - Progress in Cryptology - INDOCRYPT 2009
2009	Florian Mendel, Christian Rechberger, Martin Schläffer - *"MD5 is Weaker than Weak: Attacks on Concatenated Combiners"* - Advances in Cryptology - ASIACRYPT 2009
2009	Sebastiaan Indesteege, Florian Mendel, Bart Preneel, Martin Schläffer - *"Practical Collisions for SHAMATA-256"* - Selected Areas in Cryptography
2009	Florian Mendel, Christian Rechberger, Martin Schläffer, Søren Steffen Thomsen - *"The Rebound Attack: Cryptanalysis of Reduced Whirlpool and Grøstl"* - Fast Software Encryption
2009	Jean-Philippe Aumasson, Orr Dunkelman, Florian Mendel, Christian Rechberger, Søren Steffen Thomsen - *"Cryptanalysis of Vortex"* - Progress in Cryptology - AFRICACRYPT 2009
2008	Marko Hölbl, Christian Rechberger, Tatjana Welzer - *"Searching for messages conforming to arbitrary sets of conditions in SHA-256"* - Proceedings of Western European Workshop on Research in Cryptology
2008	Christophe De Cannière, Christian Rechberger - *"Preimages for Reduced SHA-0 and SHA-1"* - Advances in Cryptology - CRYPTO 2008
2008	Jean-Philippe Aumasson, Simon Fischer, Shahram Khazaei, Willi Meier, Christian Rechberger - *"New Features of Latin Dances: Analysis of Salsa, ChaCha, and Rumba"*
2008	Florian Mendel, Martin Schläffer - *"Collisions for Round-Reduced LAKE"* - Information Security and Privacy
2008	Jean-Philippe Aumasson, Willi Meier, Florian Mendel - *"Preimage Attacks on 3-Pass HAVAL and Step-Reduced MD5"* - Selected Areas in Cryptography
2008	Svetla Nikova, Vincent Rijmen, Martin Schläffer - *"Secure Hardware Implementations of Non-Linear Functions in the Presence of Glitches"* - Information Security and Cryptology - ICISC 2008
2008	Sebastiaan Indesteege, Florian Mendel, Bart Preneel, Christian Rechberger - *"Collisions and other Non-Random Properties for Step-Reduced SHA-256"* - Selected Areas in Cryptography
2008	Florian Mendel, Norbert Pramstaller, Christian Rechberger - *"A (Second) Preimage Attack on the GOST Hash Function"* - Fast Software Encryption
2008	Emilia Käsper, Vincent Rijmen, Tor E. Bjørstad, Christian Rechberger, Matt Robshaw, Gautham Sekar - *"Correlated Keystreams in MOUSTIQUE"* - Progress in Cryptology – AFRICACRYPT 2008
2008	Florian Mendel, Norbert Pramstaller, Christian Rechberger, Marcin Kontak, Janusz Szmidt - *"Cryptanalysis of the GOST Hash Function"* - Advances in Cryptology - CRYPTO 2008
2007	Christophe De Cannière, Florian Mendel, Christian Rechberger - *"Collisions for 70-step SHA-1: On the Full Cost of Collision Search"* - Selected Areas in Cryptography
2007	Christian Rechberger, Vincent Rijmen - *"The SHA Family of Hash Functions: Recent Results"* - Proceedings of Security and Protection of Information 2007
2007	Mario Lamberger, Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"Second Preimages for SMASH"*
2007	Christian Rechberger, Vincent Rijmen - *"On Authentication With HMAC and Non-Rondom Properties"* - Financial Cryptography 2007
2007	Lars R. Knudsen, Christian Rechberger, Søren Steffen Thomsen - *"The Grindahl hash functions"* - Fast Software Encryption (FSE) 2007
2007	Florian Mendel, Joseph Lano, Bart Preneel - *"Cryptanalysis of Reduced Variants of the FORK-256 Hash Function"* - Topics in Cryptology - CT-RSA 2007
2007	Norbert Pramstaller, Mario Lamberger, Vincent Rijmen - *"Second Preimages for Iterated Hash Functions and their Implications on MACs"* - Proceedings of the 12th Australasian Conference on Information Security and Privacy - ACISP 2007
2007	Lars R. Knudsen, Vincent Rijmen - *"Known-key distinguishers for some block ciphers"*
2007	Florian Mendel, Vincent Rijmen - *"Weaknesses in the HAS-V Compression Function"* - Information Security and Cryptology - ICISC 2007
2007	Florian Mendel, Vincent Rijmen - *"Colliding Message Pair for 53-Step HAS-160"* - Information Security and Cryptology - ICISC 2007
2007	Florian Mendel, Vincent Rijmen - *"Cryptanalysis of the Tiger Hash Function"* - Advances in Cryptology – ASIACRYPT 2007
2007	Johann Großschädl, Stefan Tillich, Christian Rechberger, Michael Hofmann, Marcel Medwed - *"Energy Evaluation of Software Implementations of Block Ciphers under Memory Constraints"* - Proceedings of the 10th Conference on Design, Automation and Test in Europe (DATE 2007)
2006	Florian Mendel, Norbert Pramstaller, Christian Rechberger - *"Improved Collision-Attack on the Hash Function Proposed at PKC'98"* - Information Security and Cryptology – ICISC 2006
2006	Florian Mendel, Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"On the Collision Resistance of RIPEMD-160"* - Information Security
2006	Decio Gazzoni Filho, Paulo S.L.M. Barreto, Vincent Rijmen - *"The Maelstrom-0 hash function"* - SBSeg 2006 (Note: to appear)
2006	Martin Feldhofer, Christian Rechberger - *"A Case Against Currently Used Hash Functions in RFID Protocols"* - On the Move to Meaningful Internet Systems 2006
2006	Martin Schläffer, Maria Elisabeth Oswald - *"Searching for Differential Paths in MD4"* - Fast Software Encryption
2006	Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"A Compact FPGA Implementation of the Hash Function Whirlpool"* - Fourteenth ACM/SIGDA International Symposium on Field-Programmable Gate Arrays
2006	Christophe De Cannière, Christian Rechberger - *"Finding SHA-1 Characteristics: General Results and Applications"* - Advances in Cryptology - Asiacrypt 2006
2006	Florian Mendel, Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"Analysis of Step-Reduced SHA-256"* - Fast Software Encryption
2006	Martin Feldhofer, Christian Rechberger - *"A Case Against Currently Used Hash Functions in RFID Protocols"* - Workshop on RFID Security 2006
2006	Joan Daemen, Vincent Rijmen - *"Understanding Two-Round Differentials in AES"* - Security and Cryptography for Networks 2006
2006	Florian Mendel, Bart Preneel, Vincent Rijmen, Hirotaka Yoshida, Dai Watanabe - *"Update on Tiger"* - Progress in Cryptology - INDOCRYPT 2006
2006	Florian Mendel, Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"The Impact of Carries on the Complexity of Collision Attacks on SHA-1"* - Fast Software Encryption
2006	Svetla Nikova, Christian Rechberger, Vincent Rijmen - *"Threshold Implementations Against Side-Channel Attacks and Glitches"* - Information and Communications Security
2005	Vincent Rijmen, Maria Elisabeth Oswald - *"Update on SHA-1"* - Topics in Cryptology - CT-RSA 2005
2005	Krystian Matusiewicz, Josef Pieprzyk, Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"Analysis of simplified variants of SHA-256"* - Western European Workshop on Research in Cryptology - WEWoCR 2005, LNI P-74 (ISSN 1617-5468)
2005	Christian Rechberger, Vincent Rijmen - *"Recent results on SHA-1 and SHA-256"* - Proceedings of Santa's Crypto Get-together 2005
2005	Joan Daemen, Vincent Rijmen - *"A new MAC construction Alred and a specific instance Alpha-MAC"* - Fast Software Encryption
2005	Vincent Rijmen, Maria Elisabeth Oswald - *"Representations and Rijndael descriptions"* - Advanced Encryption Standard - AES4
2005	Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"Exploiting Coding Theory for Collision Attacks on SHA-1"* - 10th IMA International Conference on Cryptography and Coding
2005	Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"Breaking a new Hash Function Design Strategy called SMASH"* - Selected Areas in Cryptography
2004	Vincent Rijmen - *"The MESH block ciphers"* - Information Security Applications, 4th International Workshop, WISA 2003
2004	Vincent Rijmen, Joan Daemen - *"Implementing AES"* - Securing electronic business processes
2004	Vincent Rijmen, Malek Bechlaghem - *"Proving key usage"* - WISA 2004
2004	Christian Rechberger, Maria Elisabeth Oswald - *"Stream Ciphers and Side-Channel Analysis"* - SASC - The State of the Art of Stream Ciphers
2004	Ove Scavenius, Martin Boesgaard, Thomas Pedersen, Jesper Christiansen, Vincent Rijmen - *"Periodic properties of counter assisted stream ciphers"* - Topics in cryptology - CT-RSA 2004

Part of a book
2004	Maria Elisabeth Oswald - *"Basic Security Services and Cryptography book title: Security and Privacy in Advanced Networking Technologies"*

Book
2005	Vincent Rijmen - *"Advanced Encryption Standard - AES4"* (Springer Berlin)

Article
2012	Mario Lamberger, Florian Mendel, Vincent Rijmen, Koen Simoens - *"Memoryless Near-Collisions via Coding Theory"* - Designs, codes and cryptography (Volume: 62)
2011	Svetla Nikova, Vincent Rijmen, Martin Schläffer - *"Secure Hardware Implementation of Nonlinear Functions in the Presence of Glitches"* - Journal of cryptology (Volume: 24 2)
2010	Vincent Rijmen - *"Stream ciphers and the eSTREAM project"* - The ISC international journal of information security (Volume: 2)
2010	Paulo Barreto, Ventzislav Nikov, Svetla Nikova, Vincent Rijmen, Elmar Tischhauser - *"Whirlwind: a new cryptographic hash function"* - Designs, codes and cryptography (Volume: 56)
2009	Tomislav Nad, Mario Lamberger, Vincent Rijmen - *"Numerical solvers and cryptanalysis"* - Journal of mathematical cryptology (Volume: 3 3)
2009	Joan Daemen, Mario Lamberger, Norbert Pramstaller, Vincent Rijmen, Frederik Vercauteren - *"Computational aspects of the expected differential probability of 4-round AES and AES-like ciphers"* - Computing (Volume: 85 1-2)
2009	Vincent Rijmen, Justin Troutman - *"Green cryptography: cleaner engineering through recycling"* - IEEE security & privacy (Volume: 7 4)
2009	Joan Daemen, Vincent Rijmen - *"New criteria for linear maps in AES-like ciphers"* - Cryptography and communications (Volume: 1)
2008	Mario Lamberger, Norbert Pramstaller, Christian Rechberger, Vincent Rijmen - *"Analysis of the Hash Function Design Strategy called SMASH"* - IEEE transactions on information theory (Volume: 54)
2008	Vincent Rijmen, Paulo S.L.M. Barreto, Decio Gazzoni Filho - *"Rotation symmetry in algebraically generated cryptographic substitution tables"* - Information processing letters (Volume: 106 6)
2008	Christian Rechberger, Vincent Rijmen - *"New Results on NMAC/HMAC when Instantiated with Popular Hash Functions"* - Journal of universal computer science [Elektronische Ressource] (Volume: 14 3)
2007	Joan Daemen, Vincent Rijmen - *"Probability distributions of correlations and differentials in block ciphers"* - Journal of mathematical cryptology (Volume: 1 3)
2007	Joan Daemen, Vincent Rijmen - *"Plateau characteristics"* - IET information security (Volume: 1)
2006	Christian Rechberger, Vincent Rijmen, Nicolas Sklavos - *"The NIST Cryptographic Workshop on Hash Functions"* - IEEE security & privacy (Volume: 4)
2004	Vincent Rijmen - *"Equivalent descriptions for the DES"* - Electronics letters (Volume: 40 4)

Dissertation
2010	Florian Mendel - *"Analysis of Cryptographic Hash Functions"*
2009	Christian Rechberger - *"Cryptanalysis of Hash Functions"*
2007	Norbert Pramstaller - *"Cryptanalysis and Design of Iterated Hash Functions"*

Master thesis
2006	Martin Schläffer - *"Cryptanalysis of MD4"*
2005	Florian Mendel - *"Analysis of the Cryptographic Hash Function Tiger"*

Miscellaneous
2010	Martin Schläffer - *"Subspace Distinguisher for 5/8 Rounds of the ECHO-256 Hash Function"*