MD6

From The ECRYPT Hash Function Website

Jump to: navigation, search

1 The algorithm

  • Authors: Ron Rivest, Benjamin Agre, Daniel V. Bailey, Christopher Crutchfield, Yevgeniy Dodis, Kermin Elliott Fleming, Asif Khan, Jayant Krishnamurthy, Yuncheng Lin, Leo Reyzin, Emily Shen, Jim Sukha, Drew Sutherland, Eran Tromer, Yiqun Lisa Yin
  • Website: http://groups.csail.mit.edu/cis/md6/
  • NIST submission package: MD6.zip


Ronald L. Rivest - The MD6 hash function -- A proposal to NIST for SHA-3
Submission to NIST, 2008
[Electronic Edition] [Bibtex]
Author : Ronald L. Rivest
Title : The MD6 hash function -- A proposal to NIST for SHA-3
In : Submission to NIST -


2 Cryptanalysis

Type of Analysis Hash Function Part Hash Size (n) Parameters/Variants Compression Function Calls Memory Requirements Reference
non-randomness reduced compression 18 rounds  ?  ? Aumasson,Meier
key-recovery reduced compression 15 rounds  ?  ? Dinur,Shamir
non-randomness reduced permutation 30 rounds  ?  ? Khovratovich
non-randomness reduced permutation 33 rounds  ?  ? Khovratovich
collision reduced compression 16 rounds 230 - Khazaei,Meier

A description of this table is given here.


Jean-Philippe Aumasson, Willi Meier - Personal communication (nonrandomness on the reduced-round compression function)
Reported in the supporting documentation, 2008
[Electronic Edition] [Bibtex]
Author : Jean-Philippe Aumasson, Willi Meier
Title : Personal communication (nonrandomness on the reduced-round compression function)
In : Reported in the supporting documentation -

Itai Dinur, Adi Shamir - Personal communication (key recovery on the reduced-round compression function)
Reported in the supporting documentation, 2008
[Electronic Edition] [Bibtex]
Author : Itai Dinur, Adi Shamir
Title : Personal communication (key recovery on the reduced-round compression function)
In : Reported in the supporting documentation -

Dimitry Khovratovich - Gaussian cryptanalysis of hash functions: collisions, preimages, distinguishers
Available online, abstract only, 2009
[Electronic Edition] [Bibtex]
Author : Dimitry Khovratovich
Title : Gaussian cryptanalysis of hash functions: collisions, preimages, distinguishers
In : Available online, abstract only -
[Abstract]

Dimitry Khovratovich - Nonrandomness of the 33-round MD6
FSE 2009 rump session, slides only, 2009
[Electronic Edition] [Bibtex]
Author : Dimitry Khovratovich
Title : Nonrandomness of the 33-round MD6
In : FSE 2009 rump session, slides only -

Shahram Khazaei, Willi Meier - Collisions for 16-round MD6
NIST mailing list (local link), 2009
[Electronic Edition] [Bibtex]
Author : Shahram Khazaei, Willi Meier
Title : Collisions for 16-round MD6
In : NIST mailing list (local link) -
Personal tools