JH

From The ECRYPT Hash Function Website

Jump to: navigation, search

1 The algorithm

Author(s): Hongjun Wu
Website: http://icsd.i2r.a-star.edu.sg/staff/hongjun/jh/
NIST submission package:
- round 1/2: JH_Round2.zip (old versions: JH.zip, JHUpdate.zip)

Hongjun Wu - The Hash Function JH

Submission to NIST (updated), 2009

[Electronic Edition] [Bibtex]

Author : Hongjun Wu
Title : The Hash Function JH
In : Submission to NIST (updated) -

Hongjun Wu - The Hash Function JH

Submission to NIST, 2008

[Electronic Edition] [Bibtex]

Author : Hongjun Wu
Title : The Hash Function JH
In : Submission to NIST -

2 Cryptanalysis

We distinguish between two cases: results on the complete hash function, and results on underlying building blocks.

A description of the tables is given here.

2.1 Hash function

Here we list results on the hash function according to the NIST requirements. The only allowed modification is to change the security parameter.

Recommended security parameter: 35.5 rounds

Type of Analysis	Hash Size (n)	Parameters	Compression Function Calls	Memory Requirements	Reference
preimage⁽¹⁾	512		2^510.3 (+ 2⁵²⁴ MA + 2⁵²⁴ CMP)	2^510.3 (Wu: 2^510.6)	Mendel,Thomsen, Wu

⁽¹⁾ Wu has analyzed the exact memory requirements, additional memory accesses (MA) and comparisons (CMP) of the attack by Mendel and Thomsen.

2.2 Building blocks

Here we list results on underlying building blocks, and the hash function modified by other means than the security parameter.

Note that these results assume more direct control or access over some internal variables (aka. free-start, pseudo, compression function, block cipher, or permutation attacks).

Type of Analysis	Hash Function Part	Hash Size (n)	Parameters/Variants	Compression Function Calls	Memory Requirements	Reference
pseudo-collision	compression	all		-	-	Bagheri
pseudo-2nd preimage	compression	all		-	-	Bagheri