Cryptology ePrint Archive: Report 2001/020

Some observations on the theory of cryptographic hash functions

D.R. Stinson

Abstract: In this paper, we study several issues related to the notion of ``secure'' hash functions. Several necessary conditions are considered, as well as a popular sufficient condition (the so-called random oracle model). We study the security of various problems that are motivated by the notion of a secure hash function. These problems are analyzed in the random oracle model, and we prove that the obvious trivial algorithms are optimal. As well, we look closely at reductions between various problems. In particular, we consider the important question ``does preimage resistance imply collision resistance?''. Finally, we study the relationship of the security of hash functions built using the Merkle-Damgard construction to the security of the underlying compression function.

Category / Keywords: foundations / hash functions

Date: received 2 Mar 2001

Contact author: dstinson at uwaterloo ca

Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | BibTeX Citation

Version: 20010302:235213 (All versions of this report)

Short URL: ia.cr/2001/020

Discussion forum: Show discussion | Start new discussion