|
Posted by Unruh on December 25, 2007, 9:32 pm
If you were Registered and logged in, you could reply and use other advanced thread options
>Unruh wrote:
>> And at each step in the hash, information is thrown away.
>Unless you reach its maxixum output length (which is typically very short in
>comparison to the input), any good cryptographic hash does its best in
>preserving as much information as possible.
No, it does its best at not preserving any information as possible if it is
a cryptographic hash. You want it to a reproducible mapping from stings to
finite length random numbers.
>> Secondly to find even one of those may be very difficult. Yes, If I try
>> 2^128 inputs there is good possiblity I will find the one giving me the
>> hash I have, but 2^128 is a very large number and I cannot try that many.
>Are you implying a cryptographic hash here? The OP didn't. Sometimes we just
Yes, he did. He implied that he was talking about a situation in which is
was very hard or impossible to reverse the hash. Or did you not happen to
read the OP post.
>want hashes that are only good at not randomly leading to collision, and CRC
>is a perfect hash in this sense - yet is cryptographically insecure.
>> For an encryption, which is one to one, there are 2^60 or 2^128 ( depending
>> on the key length) by which that output could have been generated from the
>> input ( the process depends on the key). Thus I do NOT know how the output
>> was generated and thus cannot reverse it.
>Nonsense again. You just have to know the key and for a small set of inputs
>you can perfectly reverse it.
??? Where did I say you know the key? You do not know the key if you are an
attacker, which is what the OP implied. Also, he was clearly discussing
with his friend the case of cryptographic hash functions which are not
easily reversed (ie it is not easy to find the preimage).
| 
XML site map