RIPEMD

From The ECRYPT Hash Function Website

Jump to: navigation, search

Contents

1 Specification

  • digest size: 128 bits
  • max. message length: < 264 bits
  • compression function: 512-bit message block, 2 streams with each 128-bit chaining variable
  • Specification:


2 Cryptanalysis

2.1 Best Known Results

The best collision attack on full RIPEMD was published by Wang et al. It has complexity of 218 hash evaluations.


2.2 Generic Attacks


2.3 Collision Attacks

Xiaoyun Wang, Xuejia Lai, Dengguo Feng, Hui Chen, Xiuyuan Yu - Cryptanalysis of the Hash Functions MD4 and RIPEMD
In Proceedings of EUROCRYPT, LNCS 3494, pp. 1-18, Springer, 2005
[Electronic Edition] [Bibtex]
Author : Xiaoyun Wang, Xuejia Lai, Dengguo Feng, Hui Chen, Xiuyuan Yu
Title : Cryptanalysis of the Hash Functions MD4 and RIPEMD
In : In Proceedings of EUROCRYPT -
[Abstract]

Christophe Debaert, Henri Gilbert - The RIPEMD and RIPEMD Improved Variants of MD4 Are Not Collision Free
In Proceedings of FSE, LNCS 2355, pp. 52-65, Springer, 2002
[Electronic Edition] [Bibtex]
Author : Christophe Debaert, Henri Gilbert
Title : The RIPEMD and RIPEMD Improved Variants of MD4 Are Not Collision Free
In : In Proceedings of FSE -
[Abstract]

Hans Dobbertin - RIPEMD with Two-Round Compress Function is Not Collision-Free
J. Cryptology10(1):51-70, 1997
[Electronic Edition] [Bibtex]
Author : Hans Dobbertin
Title : RIPEMD with Two-Round Compress Function is Not Collision-Free
In : J. Cryptology -
[Abstract]

2.4 Second Preimage Attacks


2.5 Preimage Attacks


2.6 Others

Personal tools