Re: k-way hash collisions
From: Jean-Luc Cooke (jlcooke_at_engsoc.org)
Date: 12/10/04
- Next message: Jean-Luc Cooke: "Re: Simple hash uses in my own programming."
- Previous message: Jean-Luc Cooke: "Re: Password checking theorical question"
- In reply to: kaskati: "k-way hash collisions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 10 Dec 2004 16:48:14 GMT
kaskati <kaskati2003@yahoo.com> wrote:
> For an ideal hash function, the complexity of finding a k-way
> collision is
> O(2^{(k-1)n/k}) therefore as k becomes larger, the complexity of a
> k-way collision attack approaches the complexity of a pre-image
> attack.
> Recently, Joux showed a generic multi-collision attack for iterated
> hash functions to reduce the k-way collision complexity to
> O(log(k)*2^{(n/2)}). But in his attack the pre-images are not
> independent. They are just combinations of block collisions of k
> blocks. Here are my questions:
> 1. How can the formula for the complexity of finding a k-way collision
> be derived?
Read a high-school math text on finite statistics or search fo "birthday
paradox" on MathWorld's website.
> 2. Is there any hash design that allows to reduce the complexity of
> k-way collision for "independent" pre-images while preserving the
> complexity of the pre-image attack?
--
- Next message: Jean-Luc Cooke: "Re: Simple hash uses in my own programming."
- Previous message: Jean-Luc Cooke: "Re: Password checking theorical question"
- In reply to: kaskati: "k-way hash collisions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
