Title: The Symbiosis between Collision and Preimage Resistance
Authors: Andreeva, Elena
Stam, Martijn #
Issue Date: 2011
Publisher: Springer
Series Title: International Conference on CRYPTOGRAPHY AND CODING vol:7089 pages:152-171
Host Document: LNCS
Conference: International Conference on CRYPTOGRAPHY AND CODING edition:13 location:Oxford, UK date:12-15 December 2011
Abstract: We revisit the definitions of preimage resistance, focussing on the question of finding a definition that is simple enough to prove security against, yet flexible enough to be of use for most applications. We give an in-depth analysis of existing preimage resistance notions, introduce several new notions, and establish relations and separations between the known and new preimage notions.
This establishes a clear separation between domain-oriented and range-oriented preimage resistance notions. For the former an element is chosen from the domain and hashed to form the target digest; for the latter the target digest is chosen directly from the range.
In particular, we show that Rogaway and Shrimpton’s notion of everywhere preimage resistance on its own is less powerful than previously thought. However, we prove that in conjunction with collision resistance, everywhere preimage resistance implies ‘ordinary’ (domain-based) preimage resistance. We show the implications of our result for iterated hash functions and hash chains, where the latter is related to the Winternitz one-time signature scheme.
ISBN: 978-3-642-25515-1
Publication status: published
KU Leuven publication type: IC
Appears in Collections:ESAT - STADIUS, Stadius Centre for Dynamical Systems, Signal Processing and Data Analytics
# (joint) last author

Files in This Item:
File Description Status SizeFormat
symbiosis.pdf Published 371KbAdobe PDFView/Open


All items in Lirias are protected by copyright, with all rights reserved.