Speeding up the Wide-Pipe: Secure and Fast Hashing
Mridul Nandi, Souradyuti Paul
In this paper we propose a new sequential mode of operation the Fast wide pipe or FWP for short - to hash messages of arbitrary length. The mode is shown to be (1) preimage-resistance preserving, (2) collision-resistance-preserving and, most importantly, (3) indifferentiable from a random oracle up to O(2^n/2) compression function invocations. In addition, our rigorous investigation suggests that any variants of Joux's multi-collision, Kelsey-Schneier 2nd preimage and Herding attack are also ineffective on this mode. This fact leads us to conjecture that the indifferentiability security bound of FWP can be extended beyond the birthday barrier. From the point of view of efficiency, this new mode, for example, is always faster than the Wide-pipe mode when both modes use an identical compression function. In particular, it is nearly twice as fast as the Wide-pipe for a reasonable selection of the input and output size of the compression function. We also compare the FWP with several other modes of operation.
Progress in Cryptology - INDOCRYPT 2010 (Lecture Notes in Computer Science)
December 12-15, 2010
11th International Conference on Cryptology in India (INDOCRYPT 2010)
and Paul, S.
Speeding up the Wide-Pipe: Secure and Fast Hashing, Progress in Cryptology - INDOCRYPT 2010 (Lecture Notes in Computer Science), Hyderabad, -1, [online], https://doi.org/10.1007/978-3-642-17401-8_12
(Accessed September 27, 2023)