Re: Maybe a stupid question regarding input output fed hash algorithms
From: Tom St Denis (tomstdenis_at_yahoo.com)
Date: 08/21/03
- Next message: Francois Grieu: "Re: 3-instruction one-way function. Invitation"
- Previous message: Tom St Denis: "Re: 3-instruction one-way function. Invitation"
- In reply to: jonas.t_at_bredband.net: "Maybe a stupid question regarding input output fed hash algorithms"
- Next in thread: jonas.t_at_bredband.net: "Re: Maybe a stupid question regarding input output fed hash algorithms"
- Reply: jonas.t_at_bredband.net: "Re: Maybe a stupid question regarding input output fed hash algorithms"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 21 Aug 2003 12:16:08 -0700
<jonas.t@bredband.net> wrote in message news:<wwZ0b.67885$zL.288@news1.bredband.com>...
> If i feed MD5 with another MD5 output e.g 128 bit.
First off, why would you do that?
> Is it possible to backtrack the original 128 bit string, is the output from
> MD5 carrying such features that will make it possible to reverse a
> stream/chain of MD5 fed loop.
You only make the design weaker though. MD5 is obviously not an
invertable function so applying it twice only *lowers* the entropy of
the output. If you wanted to strengthen the design you would add more
rounds to it [or just use a SHA hash].
> Of course i realise that such a chain of linear input output doesn't make
> sense to use in a stream cipher.
> However if i start out with three MD5 buffers and let the outputs inputs
> rotate between the buffes and only use one of the output buffers for use as
> a linear streamcipher, do MD5 carry such features that it is possible to
> reverse it *if you know* that it is fed by a MD5 string.
This all sounds interestingly stupid. The most common way to make a
stream cipher from a hash is an CTR mode e.g.
C[i] = P[i] xor H(IV || key || i)
Of course such a construction is typically fairly slow.
> I also wonder if this kind of rotating input output buffers could be used to
> create streams from other hash algorithms.
Probably but until you formalize your idea nobody will care. If you
build it, they will come!
Fields of dreams [over Z....stupid math nerds on campus! damn you!]
> Maybe it is alltogether a very bad idea overall but if so i would like to
> know why, i'm a bit clueless since it seems like a good idea to me.
That's part and parcel of the problem. I couldn't tell you outright
what is exactly wrong with it other than it's overly complicated and
hasn't been studied much before [in your context, CTR mode has been
around forever].
Tom
- Next message: Francois Grieu: "Re: 3-instruction one-way function. Invitation"
- Previous message: Tom St Denis: "Re: 3-instruction one-way function. Invitation"
- In reply to: jonas.t_at_bredband.net: "Maybe a stupid question regarding input output fed hash algorithms"
- Next in thread: jonas.t_at_bredband.net: "Re: Maybe a stupid question regarding input output fed hash algorithms"
- Reply: jonas.t_at_bredband.net: "Re: Maybe a stupid question regarding input output fed hash algorithms"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
