All Questions
Tagged with chacha collision-resistance
4
questions
2
votes
1
answer
139
views
Recommended output filter for Rumba20 [closed]
Rumba20 is a compression function that maps a 192-byte (1536-bit) string to a 64-byte (512-bit) string. It's designed to provide collision resistance by using Salsa20 (or ChaCha20) with the ...
- 1,833
1
vote
0
answers
53
views
Round counts and permutation usage for hashing for a Merkle tree
Are there any current recommendations for performant hashing in a Merkle tree?
It appears the hash based signatures in Sphincs use Blake2 everywhere (see Table 1 on page 22 of https://sphincs.cr.yp....
- 1,126
5
votes
1
answer
939
views
Can ChaCha be turned into a collision resistant hash function by xoring keystreams?
In his paper about RFSB Bernstein states that the compression function
$(m_1,\ m_2,\ m_3,\ ...\ ,\ m_n) \rightarrow c_1[m_1]\ \oplus\ c_2[m_2]\ \oplus c_3[m_3]\ \oplus\ ... \oplus\ c_n[m_n]$
is ...
- 1,484
20
votes
3
answers
1k
views
Collision or second preimage for the ChaCha core?
Daniel J. Bernstein's ChaCha core is an evolution of the Salsa20 core. Both are functions over the set of 512-bit bitstrings, partitioned as sixteen 32-bit words.
Can we exhibit collisions, or second-...
- 143k