A Failure-Friendly Design Principle for Hash Functions

نویسنده

Stefan Lucks

چکیده

This paper reconsiders the established Merkle-Damg̊ard design principle for iterated hash functions. The internal state size w of an iterated n-bit hash function is treated as a security parameter of its own right. In a formal model, we show that increasing w quantifiably improves security against certain attacks, even if the compression function fails to be collision resistant. We propose the wide-pipe hash, internally using a w-bit compression function, and the double-pipe hash, with w = 2n and an n-bit compression function used twice in parallel.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Constructing Secure Hash Functions from Weak Compression Functions: The Case for Non-Streamable Hash Functions

In a recent paper, Lucks espoused a “failure-friendly” approach to hash function design [12]. We expand on this idea in two main ways. First of all, we consider the notion of a weak ideal compression function, which is vulnerable to strong forms of attack, but is otherwise random. We show that such weak ideal compression functions can be used to create secure hash functions, thereby giving a de...

متن کامل

Some thoughts on Collision Attacks in the Hash Functions MD5, SHA-0 and SHA-1

The design principle of Merkle-Damg̊ard construction is collision resistance of the compression function implies collision resistance of the hash function. Recently multi-block collisions have been found on the hash functions MD5, SHA-0 and SHA-1 using differential cryptanalysis. These multi-block collisions raise several questions on some definitions and properties used in the hash function lit...

متن کامل

Cryptographic Hash Functions: Cryptanalysis, Design and Applications

Cryptographic hash functions are an important tool in cryptography to achieve certain security goals such as authenticity, digital signatures, digital time stamping, and entity authentication. They are also strongly related to other important cryptographic tools such as block ciphers and pseudorandom functions. The standard and widely used hash functions such as MD5 and SHA-1 follow the design ...

متن کامل

CRUSH: A New Cryptographic Hash Function using Iterated Halving Technique

Most of the currently accepted designs for cryptographic hash functions are in the style of a block cipher in feed-forward mode. With increasing interest in all forms of cryptanalysis, this limited choice might become a single point of failure in computer security, and so we seek alternative paradigms. In this paper an entirely new approach, based on iterated halving (IH), is proposed for the d...

متن کامل

Platzeffiziente Hashverfahren mit garantierter konstanter Zugriffszeit

We present a new algorithm for a minimal perfect hash function (MPHF) and a new dynamic cache friendly dictionary. We describe the procedures and analyse them with respect to space and time. For our analysis we assume full randomness of hash functions which are used by the algorithms. Finally we give experimental results and discuss them. We show that it is possible to construct a minimal perfe...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}

با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره شماره

صفحات -

تاریخ انتشار 2005

A Failure-Friendly Design Principle for Hash Functions

نویسنده

چکیده

منابع مشابه

Constructing Secure Hash Functions from Weak Compression Functions: The Case for Non-Streamable Hash Functions

Some thoughts on Collision Attacks in the Hash Functions MD5, SHA-0 and SHA-1

Cryptographic Hash Functions: Cryptanalysis, Design and Applications

CRUSH: A New Cryptographic Hash Function using Iterated Halving Technique

Platzeffiziente Hashverfahren mit garantierter konstanter Zugriffszeit

عنوان ژورنال:

اشتراک گذاری