Re: MD5 collisions found - alternative?

To: Almut Behrens <almut-behrens@gmx.net>
Cc: debian-security@lists.debian.org
Subject: Re: MD5 collisions found - alternative?
From: Dale Amon <amon@vnl.com>
Date: Wed, 25 Aug 2004 10:01:25 +0100
Message-id: <[🔎] 20040825090125.GA25228@vnl.com>
In-reply-to: <[🔎] 20040825040222.GH22410@citadelle.homelinux.net>
References: <[🔎] 412B14D7.2080300@deepblue.sk> <[🔎] Pine.LNX.4.60.0408241234570.32088@ace.ulyssis.org> <[🔎] 20040824182254.GD22410@citadelle.homelinux.net> <[🔎] Pine.LNX.4.60.0408242038590.32088@ace.ulyssis.org> <[🔎] 20040824204045.GE22410@citadelle.homelinux.net> <[🔎] 20040824210158.GA45695@cuttysark.lan> <[🔎] 20040825040222.GH22410@citadelle.homelinux.net>

On Wed, Aug 25, 2004 at 06:02:22AM +0200, Almut Behrens wrote:
> Somewhat more seriously: are there generally any defining criteria for
> something one would call a 'hash function', saying that it always must
> map some larger input space to some smaller output space?

Yes. A hash function is any mapping function

	y = map(x)

where the space y is smaller than the space x. Hashing (think of
cornbeef hash with things all chopped up into bits) is a technique
to generate fast lookup keys. The discussion here is about 
cryptographic hash functions. I believe the primary difference is
that a cryptographic hash is:

	* a uniform mapping. For input space n and output space m,
	  there are on average n/m strings with the same hash key.
	* randomness. Input strings which differ by 1 bit in any
	  position generate hash keys a random distance apart

While these features are also useful in writing assembler
and compilers, they are not *that* important. I've often
used hash functions as simple as:

	"add the first 8 chars and take the low byte
	 of the integer summand."

Obviously not cryptographic.

-- 
------------------------------------------------------
   Dale Amon     amon@islandone.org    +44-7802-188325
       International linux systems consultancy
     Hardware & software system design, security
    and networking, systems programming and Admin
	      "Have Laptop, Will Travel"
------------------------------------------------------

Reply to:

Follow-Ups:
- Re: MD5 collisions found - alternative?
  - From: Almut Behrens <almut-behrens@gmx.net>
- Re: MD5 collisions found - alternative?
  - From: Matthew Palmer <mpalmer@debian.org>

References:
- MD5 collisions found - alternative?
  - From: Robert Trebula <r0b0@deepblue.sk>
- Re: MD5 collisions found - alternative?
  - From: Danny De Cock <godot@ace.ulyssis.org>
- Re: MD5 collisions found - alternative?
  - From: Almut Behrens <almut-behrens@gmx.net>
- Re: MD5 collisions found - alternative?
  - From: Danny De Cock <godot@ace.ulyssis.org>
- Re: MD5 collisions found - alternative?
  - From: Almut Behrens <almut-behrens@gmx.net>
- Re: MD5 collisions found - alternative?
  - From: Moritz Schulte <moritz@duesseldorf.ccc.de>
- Re: MD5 collisions found - alternative?
  - From: Almut Behrens <almut-behrens@gmx.net>

Prev by Date: Re: MD5 collisions found - alternative?
Next by Date: Re: MD5 collisions found - alternative?
Previous by thread: Re: MD5 collisions found - alternative?
Next by thread: Re: MD5 collisions found - alternative?
Index(es):
- Date
- Thread