Re: RFC v3: Another proposed hash function transition plan

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: RFC v3: Another proposed hash function transition plan
From: Gilles Van Assche <gilles.vanassche@xxxxxx>
Date: Mon, 18 Sep 2017 14:17:33 +0200
Cc: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>, demerphq <demerphq@xxxxxxxxx>, Brandon Williams <bmwill@xxxxxxxxxx>, Junio C Hamano <gitster@xxxxxxxxx>, Jonathan Nieder <jrnieder@xxxxxxxxx>, Git Mailing List <git@xxxxxxxxxxxxxxx>, Stefan Beller <sbeller@xxxxxxxxxx>, Jonathan Tan <jonathantanmy@xxxxxxxxxx>, Jeff King <peff@xxxxxxxx>, David Lang <david@xxxxxxx>, "brian m. carlson" <sandals@xxxxxxxxxxxxxxxxxxxx>, Keccak Team <keccak@xxxxxxxxxxx>
In-reply-to: <alpine.DEB.2.21.1.1709142037490.4132@virtualbox>
References: <20170304011251.GA26789@aiede.mtv.corp.google.com> <CA+55aFz+gkAsDZ24zmePQuEs1XPS9BP_s8O7Q4wQ7LV7X5-oDA@mail.gmail.com> <20170307001709.GC26789@aiede.mtv.corp.google.com> <xmqqa828733s.fsf@gitster.mtv.corp.google.com> <xmqq1snh29re.fsf@gitster.mtv.corp.google.com> <20170911185913.GA5869@google.com> <alpine.DEB.2.21.1.1709131340030.4132@virtualbox> <CANgJU+Wv1nx79DJTDmYE=O7LUNA3LuRTJhXJn+y0L0C3R+YDEA@mail.gmail.com> <CA+55aFwUn0KibpDQK2ZrxzXKOk8-aAub2nJZQqKCpq1ddhDcMQ@mail.gmail.com> <alpine.DEB.2.21.1.1709142037490.4132@virtualbox>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0

Hi Johannes,

> SHA-256 got much more cryptanalysis than SHA3-256 […].

I do not think this is true. Keccak/SHA-3 actually got (and is still
getting) a lot of cryptanalysis, with papers published at renowned
crypto conferences [1].

Keccak/SHA-3 is recognized to have a significant safety margin. E.g.,
one can cut the number of rounds in half (as in Keyak or KangarooTwelve)
and still get a very strong function. I don't think we could say the
same for SHA-256 or SHA-512…

Kind regards,
Gilles, for the Keccak team

[1] https://keccak.team/third_party.html

Follow-Ups:
- Re: RFC v3: Another proposed hash function transition plan
  - From: Jonathan Nieder
- Re: RFC v3: Another proposed hash function transition plan
  - From: Johannes Schindelin

References:
- RFC: Another proposed hash function transition plan
  - From: Jonathan Nieder
- Re: RFC: Another proposed hash function transition plan
  - From: Linus Torvalds
- RFC v3: Another proposed hash function transition plan
  - From: Jonathan Nieder
- Re: RFC v3: Another proposed hash function transition plan
  - From: Junio C Hamano
- Re: RFC v3: Another proposed hash function transition plan
  - From: Junio C Hamano
- Re: RFC v3: Another proposed hash function transition plan
  - From: Brandon Williams
- Re: RFC v3: Another proposed hash function transition plan
  - From: Johannes Schindelin
- Re: RFC v3: Another proposed hash function transition plan
  - From: demerphq
- Re: RFC v3: Another proposed hash function transition plan
  - From: Linus Torvalds
- Re: RFC v3: Another proposed hash function transition plan
  - From: Johannes Schindelin

Prev by Date: Re: [PATCH 1/3] sha1_name: Create perf test for find_unique_abbrev()
Next by Date: Re: [PATCH] test-drop-caches: mark file local symbols with static
Previous by thread: Re: RFC v3: Another proposed hash function transition plan
Next by thread: Re: RFC v3: Another proposed hash function transition plan
Index(es):
- Date
- Thread

[Index of Archives] [Linux Kernel Development] [Gcc Help] [IETF Annouce] [DCCP] [Netdev] [Networking] [Security] [V4L] [Bugtraq] [Yosemite] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Linux SCSI] [Fedora Users]