Difference between revisions of "RIPEMD"

From The ECRYPT Hash Function Website
(Collision Attacks)
Line 25: Line 25:
 
@article{jocDobbertin97,
 
@article{jocDobbertin97,
 
   author    = {Hans Dobbertin},
 
   author    = {Hans Dobbertin},
   title    = {{RIPEMD with Two-Round Compress Function is Not Collision-Free}},
+
   title    = {RIPEMD with Two-Round Compress Function is Not Collision-Free},
 
   journal  = {J. Cryptology},
 
   journal  = {J. Cryptology},
 
   volume    = {10},
 
   volume    = {10},

Revision as of 18:10, 10 March 2008

1 Specification

  • digest size: 128 bits
  • max. message length: < 264 bits
  • compression function: 512-bit message block, 2 streams with each 128-bit chaining variable
  • Specification:


2 Cryptanalysis

2.1 Best Known Results


2.2 Generic Attacks


2.3 Collision Attacks

Hans Dobbertin - RIPEMD with Two-Round Compress Function is Not Collision-Free

J. Cryptology 10(1):51-70,1997
http://dx.doi.org/10.1007/s001459900019
Bibtex
Author : Hans Dobbertin
Title : RIPEMD with Two-Round Compress Function is Not Collision-Free
In : J. Cryptology -
Address :
Date : 1997

2.4 Second Preimage Attacks


2.5 Preimage Attacks


2.6 Others