Re: Whirlpool 512-bit collisions?
From: Alan (a__l__a__n_at_hotmail.com)
Date: 06/15/05
- Next message: Gregory G Rose: "Re: crypto for Joseph Ashwood?"
- Previous message: Peter Seibel: "Needle in a haystack--or is this just stupid?"
- In reply to: Matt Mahoney: "Re: Whirlpool 512-bit collisions?"
- Next in thread: Gregory G Rose: "Re: Whirlpool 512-bit collisions?"
- Reply: Gregory G Rose: "Re: Whirlpool 512-bit collisions?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 15 Jun 2005 10:28:32 -0400
Matt Mahoney wrote:
> (1) most certainly does have collisions for most of the possible 512
> bit inputs. It is not a big security risk because the probability is
> only 2^-512 for any pair of inputs.
Often hash functions are used to "whiten" bits collected from an entropy
source. Since there are collisions, entropy is lost by hashing. (eg You
might put 512 bits of entropy in, but how much entropy is in the output?
Less than 512 bits if there are collisions) It would be useful to have
some measure of how much entropy is lost when hashing.
Alan
- Next message: Gregory G Rose: "Re: crypto for Joseph Ashwood?"
- Previous message: Peter Seibel: "Needle in a haystack--or is this just stupid?"
- In reply to: Matt Mahoney: "Re: Whirlpool 512-bit collisions?"
- Next in thread: Gregory G Rose: "Re: Whirlpool 512-bit collisions?"
- Reply: Gregory G Rose: "Re: Whirlpool 512-bit collisions?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
Loading
