[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)

To: cfrg at ietf.org
Subject: Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
From: John Wilkinson <wilkjohn at gmail.com>
Date: Sat, 29 Oct 2005 09:08:42 -0400
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:mime-version:in-reply-to:references:content-type:message-id:from:subject:date:to:x-mailer; b=BBg03QrfgODOS6euyeLnfu44vyT+iOD0CmBz4Vegzzk6FkSS9fHXN5c0UuAuex+Jgrb9m0O2TK3LSLYFpdzeAT6UUflPF+eGnPfoJfVUhReRpfUa7mOnOWNffNQju5WlzgrbzU/eqptTPFpzTAiLFslfMphkJxAdmQZo48SKekk=
In-reply-to: <20051028221539.15039.qmail@cr.yp.to>
List-help: <mailto:cfrg-request@ietf.org?subject=help>
List-id: Crypto Forum Research Group <cfrg.ietf.org>
List-post: <mailto:cfrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=unsubscribe>
References: <200510281711.j9SHBI9f005644@taverner.CS.Berkeley.EDU> <20051028221539.15039.qmail@cr.yp.to>
Sender: cfrg-bounces at ietf.org

On Oct 28, 2005, at 6:15 PM, D. J. Bernstein wrote:

You can turn AES into a hash function by applying, e.g., Luby-Rackoff
plus Miyaguchi-Preneel. Using this hash function to derive keys is then
identical to using AES to derive keys.

Dr. Bernstein, could you please describe (or give reference to) a way to produce a hash function H from AES, such that HMAC-H is a provably secure PRF, based only on the assumption that AES is a secure PRP? Thanks. -John

_______________________________________________
Cfrg mailing list
Cfrg at ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg

Follow-Ups:
- Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
  - From: Jack Lloyd

References:
- [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
  - From: David Wagner
- Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
  - From: D. J. Bernstein

Prev by Date: Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
Next by Date: Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
Previous by thread: Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
Next by thread: Re: [Cfrg] Fwd: Hash-Based Key Derivation (fwd)
Index(es):
- Date
- Thread