Cryptanalysis of Curl-P and Other Attacks on the IOTA Cryptocurrency

@article{Heilman2019CryptanalysisOC,
  title={Cryptanalysis of Curl-P and Other Attacks on the IOTA Cryptocurrency},
  author={Ethan Heilman and Neha Narula and Garrett Tanzer and James Lovejoy and Michael Colavita and Madars Virza and Tadge Dryja},
  journal={IACR Cryptology ePrint Archive},
  year={2019},
  volume={2019},
  pages={344}
}
We present attacks on the cryptography formerly used in the IOTA blockchain, including under certain conditions the ability to forge signatures. We developed practical attacks on IOTA’s cryptographic hash function Curl-P-27, allowing us to quickly generate short colliding messages. These collisions work even for messages of the same length. Exploiting these weaknesses in Curl-P-27, we broke the EU-CMA security of the former IOTA Signature Scheme (ISS). Finally, we show that in a chosen-message… CONTINUE READING

References

Publications referenced by this paper.
SHOWING 1-10 OF 23 REFERENCES

A Certified Digital Signature

  • CRYPTO
  • 1989
VIEW 5 EXCERPTS
HIGHLY INFLUENTIAL

IOTA Signatures, Private Keys and Address Reuse? http://blog.lekkertech.net/blog/2018/03/07/iotasignatures/, archived at https://archive.is/CnydQ

Willem Pinckaers Lekkertech
  • 2018
VIEW 1 EXCERPT

Oops, I Did It Again

Leon Groot Bruinderink, Andreas Hülsing
  • Selected Areas in Cryptography – SAC 2017
  • 2018

Upgrades & Updates. https://blog.iota.org/upgradesupdates-d12145e381eb, archived at https://web.archive.org/web/ 20180722232608/https://blog.iota.org/upgrades-updates-d12145e381eb? gi=51123f82db22

David Snsteb
  • 2018
VIEW 1 EXCERPT

Venture Capital makes first investment in distributed ledger technology

  • 2018
VIEW 1 EXCERPT

IOTA Multi-Signature Scheme. https://github.com/ iotaledger/wiki/blob/master/multisigs.mdIOTA Multi-Signature Scheme

Dominik Schiener
  • (accessed February
  • 2017
VIEW 1 EXCERPT

IOTA is centralized. https://medium.com/@ercwl/iotais- centralized- 6289246e7b4d, archived at https://web.archive

Eric Wall
  • org/web/20180616231657/https://medium.com/@ercwl/iota- iscentralized-6289246e7b4d
  • 2017
VIEW 1 EXCERPT

The tangle

Serguei Popov
  • cit. on (2016),
  • 2016
VIEW 1 EXCERPT