New improved release SHA-1 collision detection
protects against twice as many SHA-1 attack classes (disturbance vectors),
but is 9 times faster than previous version. Speed is now 1.87 times normal
It is currently used among others by Git, GitHub, GMail, Google Drive and Microsoft OneDrive.
The first collision for full SHA-1,
Marc Stevens, Elie Bursztein, Pierre Karpman, Ange Albertini, Yarik Markov,
accepted at CRYPTO 2017. (PDF).
(– Winner of CRYPTO 2017 Best Paper Award. –)
(– Winner of BlackHat USA 2017 Pwnie Award for Best Cryptographic Attack. –)
M4GB: An eficient Groebner-basis algorithm,
Rusydi M. Makarim, Marc Stevens,
accepted at ISSAC 2017. (PDF).
Speeding up detection of SHA-1 collision attacks using unavoidable attack conditions,
Marc Stevens, Dan Shumow, accepted at USENIX Security 2017. (PDF).
Refined Probability of Differential Characteristics Including Dependency between Multiple
Anne Canteaut, Eran Lambooij, Samuel Neves, Shahram Rasoolzadeh, Yu Sasaki, Marc
Stevens, accepted at FSE 2018 / ToSC 2017. (PDF).
New Second Preimage Attacks on Dithered Hash Functions with Low Memory Complexity,
Muhammad Barham, Orr Dunkelman, Stefan Lucks and Marc Stevens, SAC 2016,
Lecture Notes in Computer Science, Springer, 2016.
Freestart collision for full SHA-1,
Marc Stevens, Pierre Karpman, Thomas Peyrin, EUROCRYPT 2016, Lecture Notes
in Computer Science, vol. 9665, Springer, 2016, pp. 459-483,
Reverse-engineering of the cryptanalytic attack used in the Flame super-malware,
Max Fillinger, and Marc Stevens, ASIACRYPT 2015,
Lecture Notes in Computer Science, vol. 9453, Springer, 2015, pp. 586-611,
Practical free-start collision attacks on 76-step SHA-1,
Pierre Karpman, Thomas Peyrin, and Marc Stevens, CRYPTO 2015,
Lecture Notes in Computer Science, vol. 9215, Springer, 2015, pp. 623-642,
Marc Stevens, CRYPTO 2013, Lecture Notes in Computer Science, vol. 8042, Springer, 2013, pp. 129-146,
(– Winner of the CRYPTO 2013 Best Young Researcher Paper Award. –)
New collision attacks on SHA-1 based on optimal joint local-collision analysis,
Marc Stevens, EUROCRYPT 2013, Lecture Notes in Computer Science, vol. 7881, Springer, 2013, pp. 245-261, (PDF).
Attacks on hash functions and applications, Marc Stevens, PhD thesis,
Defended on June 19, 2012.
Stellingen (Propositions): (PDF).
(– Awarded the 2013 "Martinus van Marum" prize by the J.C. Ruigrok Foundation and the Royal Holland Society of Sciences. –)
Chosen-prefix collisions for MD5 and applications,
Marc Stevens, Arjen Lenstra and Benne de Weger, International Journal of Applied
Cryptography, Vol. 2, No. 4, 2012, pp. 322-359, (PDF).
Short chosen-prefix collisions for MD5 and the creation of a rogue CA certificate,
Marc Stevens, Alexander Sotirov, Jacob Appelbaum, Arjen Lenstra, David Molnar, Dag Arne Osvik, Benne de Weger,
CRYPTO 2009, Lecture Notes in Computer Science, vol. 5677, Springer, 2009, pp. 55-69, (PDF).
(– Winner of the CRYPTO 2009 Best Paper Award. –)
Chosen-Prefix Collisions for MD5 and Colliding X.509 Certificates for Different Identities,
Marc Stevens, Arjen Lenstra and Benne de Weger,
EUROCRYPT 2007, Lecture Notes in Computer Science, vol. 4515, Springer, 2007, pp. 1-22,
On collisions for MD5, Marc Stevens, Master's Thesis, 2007,
(– Awarded the Eindhoven University of Technology "Afstudeerprijs 2008". –)
Fast collision attack on MD5, Marc Stevens, Cryptology ePrint Archive, Report 2006/104,
Efficient doubling on genus two curves over binary fields,
Tanja Lange and Marc Stevens,
Selected Areas in Cryptography, Lecture Notes in Computer Science, vol. 3357, Springer, 2004, pp. 170-181,
Grants, Honors and Awards
CRYPTO 2017 Best Paper Award
BlackHat USA 2017 Pwnie Award for Best Cryptographic Attack
NWO (Netherlands Organization for Scientific Research) Blockchain Grant 2017, PI, Consortium between CWI, UvA, VU & ABN AMRO, ING, awarded 660k€
Google Junior Faculty Applied Research Award in Security, Privacy
& Anti-abuse. Awarded $50k research gift to support my research in recognition of my work in
Cryptanalysis, in particular related to SHA-1.
NWO Veni Grant
2014, PI, awarded 248k€
(NWO: "Veni is targeted at outstanding researchers who have recently
obtained their PhD")
CRYPTO 2013 Best Young Researcher Paper Award
Martinus van Marum Prize 2013. Yearly prize from the J.C. Ruigrok
Stichting awarded by the Royal Holland Society of Sciences and Humanities
(KHMW) to a reseacher for his PhD thesis and other publications
consisting of the KHMW 'Optimus Meritis' medal of honor and 12,000
(Awarded once every five years to a reseacher in Mathematics, Computer
Science, Physics or Astronomy.)
NWO Vrije Competitie Grant 2012, Co-PI, awarded 216k€
CRYPTO 2009 Best Paper Award
TU/e Afstudeerprijs 2008. Yearly prize from the Technical
University of Eindhoven for the best Master's Thesis university-wide.
HashClash project: an open-source C++ framework for MD5 & SHA-1 differential
path construction and chosen-prefix collisions for MD5, 2009-2012. https://marc-stevens.nl/p/hashclash.
DBLP BibTex: a BibTeX aid program that can search and automatically download
citations and cross references from the DBLP Computer Science Bibliography
and the Cryptology ePrint Archive and add them to your BIB file. http://marc-stevens.nl/dblpbibtex.
Visual Cryptography: technique by Shamir and Naor that splits a black&white image file into two
images that seperately look like random static. However, put them on top of
each other when printed on transparents and the original image becomes