A Failure-Friendly Design Principle for Hash Functions

14 years 5 months ago

Download www.iacr.org

Abstract. This paper reconsiders the established Merkle-Damg˚ard design principle for iterated hash functions. The internal state size w of an iterated n-bit hash function is treated as a security parameter of its own right. In a formal model, we show that increasing w quantiﬁably improves security against certain attacks, even if the compression function fails to be collision resistant. We propose the wide-pipe hash, internally using a w-bit compression function, and the double-pipe hash, with w = 2n and an n-bit compression function used twice in parallel.

Stefan Lucks

Real-time Traffic

ASIACRYPT 2005 | Compression Function | Cryptology | Hash Function | Iterated N-bit Hash |

claim paper

Post Info
More Details (n/a)

Added	26 Jun 2010
Updated	26 Jun 2010
Type	Conference
Year	2005
Where	ASIACRYPT
Authors	Stefan Lucks

Comments (0)

Sciweavers

A Failure-Friendly Design Principle for Hash Functions

ASIACRYPT 2005 | Compression Function | Cryptology | Hash Function | Iterated N-bit Hash |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers