Publication | Open Access
Indifferentiability of Single-Block-Length and Rate-1 Compression Functions
21
Citations
4
References
2007
Year
Cryptographic PrimitiveEngineeringSecurity NotionInformation SecurityBlock CipherInformation Theoretic SecurityApproximation TheoryLossless CompressionVariable-length CodeRate-1 Compression FunctionsHash FunctionComputer ScienceData CompressionDavies-meyer Compression FunctionData SecurityCryptographyEntropyCryptographic ProtectionMerkle-damgard Construction
The security notion of indifferentiability was proposed by Maurer, Renner, and Holenstein in 2004. In 2005, Coron, Dodis, Malinaud, and Puniya discussed the indifferentiability of hash functions. They have shown that the Merkle-Damgard construction is not secure in the sense of indifferentiability. In this paper, we analyze the security of single-block-length and rate-1 compression functions in the sense of indifferentiability. We formally show that all single-block-length and rate-1 compression functions, which include the Davies-Meyer compression function, are insecure. Furthermore, we show how to construct a secure single-block-length and rate-1 compression function in the sense of indifferentiability. This does not contradict our result above.
| Year | Citations | |
|---|---|---|
Page 1
Page 1