Re: Key exchange

From: jt64@xxxxxxxx
Date: 16 Jul 2006 09:14:12 -0700

This maybe a bit silly question but could the hashes you refer to
actually rehash/morph the original password data more then once without
adding any new data.

The nice thing with using combined permutations as hashes to work on
password is that they have states, and the permutation states can be
rolled forward to make new permutation combinations.

Is this possible with a regular hash without bringing new entropy?

What i am looking for is a way to make keyexchange
superflous/unnecessary, by using combinations of permutations as a hash
algorithm with an evolution of a big internal state, that spit out keys
that are nonereversible.

Maybe this is common practice for some ciphers, maybe it lacks in
security, maybe it is just a bad idea to rekey often from a large
internal hidden state.

I can see how it is possible to actually roll forward the communication
if you have the Masterkey/Originalkey for the permutated and xored
pseudokeys that make up the session key, but if the communcation takes
place back and forth over months. The chance you actually have the
original key pretty slim and is not that easy to bruteforce 2^256
anyway

And the session key would be useless from cryptological view as soon
the combination of internal pseudokeys make a new sessionkey.

So is it possible as i propose to actually make the computation
overhead bigger generating the actual pseudo keys for an attacker that
it would be easier for him to attack each session key.

JT

John E. Hadstate skrev:

<jt64@xxxxxxxx> wrote in message
news:1153059497.796418.323890@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

So my idea in short why not use a oneway hash algorithm
with a larger
internal state than the output of it to create new keys
based on a
function/hash that rehash the internal state.

This pretty well describes how most cryptographic hashes are
used to create keys. See your email for PDFs and diagrams
on how to use hash functions to generate cipher keys from
passwords.

Key search terms: "Password-Based Encryption" "PBE" "PKCS5
Version 2" "RFC 2898"

JT

References:
- Key exchange
  - From: jt64
- Re: Key exchange
  - From: John E. Hadstate
- Re: Key exchange
  - From: jt64
- Re: Key exchange
  - From: John E. Hadstate

Prev by Date: Re: Key exchange
Next by Date: Re: Wikipedia "Cryptography" reaches Featured Article status
Previous by thread: Re: Key exchange
Next by thread: Re: Key exchange
Index(es):
- Date
- Thread

Relevant Pages

Re: How to compare hashes to find matching keys with conflicting values.
... I have found some great examples of how> to compare hashes and locate common keys or missing keys. ... # If no conflict, ...
(perl.beginners)
Re: Idiot Q: How to find index number of HASH match?
... Here are two hash tables, ... Hashes don't have 'links'. ... Hashes do not have index numbers and they don't have arrays. ... least) two choices for keeping your hash keys in order: ...
(comp.lang.perl.misc)
Re: How to avoid rehashing?
... with strings. ... And keeping this in a hash. ... I use the words as keys since I want to find every occurence of the ... these hashes, which I need to do more than once. ...
(perl.beginners)
Re: How to compare hashes to find matching keys with conflicting values.
... > I am trying to write a little script that will compare two hashes with the ... > same keys but conflicting values. ... > to compare hashes and locate common keys or missing keys. ... > compare the hosts but I am not sure how I would do this. ...
(perl.beginners)
Re: hash sortieren nach werten, hash in =?ISO-8859-15?Q?popupmen?= =?ISO-8859-15?Q?=
... Dieses Array gibst Du bei -values an. ... Du schreibst Dir eine Funktion, die Dir die Keys ... des Hashes in der Sortierung der Werte liefert. ... values ist eine Referenz auf ein @rray, ...
(de.comp.lang.perl.cgi)