Cryptology ePrint Archive: Report 2014/476

Simon's Circuit

Paul Baecher

Abstract: Simon mentions in his seminal result separating collision-resistant hash functions from one-way permutations (EUROCRYPT '98), that the wrong strategy to sample collisions can be exploited to invert the permutation. He, however, does not spell out a concrete circuit that demonstrates this. In this short note, we describe and analyze one such circuit.

Category / Keywords: foundations /

Date: received 21 Jun 2014

Contact author: pbaecher at gmail com

Available format(s): PDF | BibTeX Citation

Version: 20140621:162934 (All versions of this report)

Short URL: ia.cr/2014/476

Discussion forum: Show discussion | Start new discussion