sha 3 vs the world
play

SHA-3 vs the world David Wong Snefru MD4 Snefru MD4 Snefru MD4 - PowerPoint PPT Presentation

Dec 11, 2023 •390 likes •1.27k views

SHA-3 vs the world David Wong Snefru MD4 Snefru MD4 Snefru MD4 MD5 MerkleDamgrd SHA-1 SHA-2 Snefru MD4 MD5 MerkleDamgrd SHA-1 SHA-2 Snefru MD4 MD5 MerkleDamgrd SHA-1 SHA-2 Snefru MD4 MD5 MerkleDamgrd

  1. SHA-3 vs the world David Wong

  2. Snefru MD4

  3. Snefru MD4

  4. Snefru MD4 MD5 Merkle–Damgård SHA-1 SHA-2

  5. Snefru MD4 MD5 Merkle–Damgård SHA-1 SHA-2

  6. Snefru MD4 MD5 Merkle–Damgård SHA-1 SHA-2

  8. Snefru MD4 MD5 Merkle–Damgård SHA-1 SHA-2

  11. Keccak BLAKE, Grøstl, JH, Skein

  12. Outline 1.SHA-3 2.derived functions 3.derived protocols

  13. f permutation -based cryptography

  14. AES is a permutation input AES output

  15. AES is a permutation 0 input 0 0 0 0 0 0 AES 0 key 0 0 0 0 0 0 0 output 0

  16. Sponge Construction f

  17. Sponge Construction 0 0 0 1 0 0 0 1 f 0 1 0 0 0 0 0 1

  18. Sponge Construction 0 0 0 1 r 0 0 0 1 f 0 1 0 0 c 0 0 0 1

  19. Sponge Construction 0 0 0 1 r 0 0 r c 0 1 f 0 1 0 0 0 0 0 c 0 0 0 0 0 0 1 0 AES 0 key 0 0 0 0 0 0 0 0

  20. Sponge Construction message 0 1 0 1 ⊕ 0 1 0 0 f 0 0 0 0 0 1 0 0

  21. Sponge Construction message 0 0 ⊕ ⊕ 0 0 f 0 0 0 0

  22. Sponge Construction message 0 0 ⊕ ⊕ 0 0 f f 0 0 0 0

  23. Sponge Construction message 0 0 ⊕ ⊕ ⊕ 0 0 f f 0 0 0 0

  24. Sponge Construction message 0 0 ⊕ ⊕ ⊕ 0 0 f f f 0 0 0 0

  25. Sponge Construction message 0 0 ⊕ ⊕ ⊕ 0 0 f f f 0 0 0 0 absorbing

  26. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f 0 0 0 0 absorbing

  27. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f 0 0 0 0 absorbing

  28. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f 0 0 0 0 absorbing

  29. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing

  30. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing squeezing

  32. Keccak Guido Bertoni, Joan Daemen, Michaël Peeters and Gilles Van Assche

  33. 2007 SHA-3 competition 2012

  35. 2007 SHA-3 competition 2012 SHA-3 standard (FIPS 202) 2015

  38. Where is SHA-3 being used?

  39. Outline 1.SHA-3 2.derived functions 3.derived protocols

  41. SHAKE is a XOF

  43. 2007 SHA-3 competition 2012 SHA-3 standard (FIPS 202) 2015 SP 800-185 2016

  44. KMAC TupleHash ParallelHash

  45. KMAC message || SHA-256(message) TupleHash ParallelHash

  46. KMAC message || SHA-256(key||message) TupleHash ParallelHash

  47. KMAC message || more || SHA-256(key||message||more) TupleHash ParallelHash

  48. KMAC message || SHAKE(key || message) TupleHash ParallelHash

  49. KMAC message || SHAKE(key || message) TupleHash my RSA public key = (e, N) ParallelHash

  50. KMAC message || SHAKE(key || message) TupleHash my RSA public key = (e, N) fingerprint = SHA-256(e || N) ParallelHash

  51. KMAC message || SHAKE(key || message) TupleHash e N fingerprint1 = SHA-256( 1010110000000010001 …) ParallelHash

  52. KMAC message || SHAKE(key || message) TupleHash e N fingerprint1 = SHA-256( 1010110000000010001 …) e N fingerprint2 = SHA-256( 1010110000000010001 …) ParallelHash

  53. KMAC message || SHAKE(key || message) TupleHash SHAKE(len(e) || e || len(N) || N) ParallelHash

  54. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing squeezing

  55. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing squeezing

  56. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing squeezing

  57. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing squeezing

  58. KMAC message || SHAKE(key || message) TupleHash SHAKE(len(e) || e || len(N) || N) ParallelHash SHAKE(SHAKE(b1) || SHAKE(b2) || SHAKE(b3) || …)

  59. 2007 SHA-3 competition 2012 SHA-3 / SHAKE 2015 TupleHash / ParallelHash / KMAC 2016

  60. Keyak and Ketje

  61. 2007 SHA-3 competition 2012 SHA-3 / SHAKE 2015 TupleHash / ParallelHash / KMAC 2016 KangarooTwelve & MarsupilamiFourteen

  63. 2007 SHA-3 competition 2012 SHA-3 / SHAKE 2015 TupleHash / ParallelHash / KMAC 2016 KangarooTwelve & MarsupilamiFourteen

  64. github.com/gvanas/KeccakCodePackage

  65. Outline 1.SHA-3 2.derived functions 3.derived protocols

  66. Sponge Construction output message 0 0 ⊕ ⊕ ⊕ 0 0 f f f f f 0 0 0 0 absorbing squeezing

  67. Duplex Construction input output input output input output 0 0 ⊕ ⊕ ⊕ 0 0 f f f 0 0 0 init 0 duplexing duplexing duplexing

  68. Keyed-mode key 0 0 ⊕ 0 0 f 0 0 0 init duplexing 0

  69. Keyed-mode key secret part 0 0 ⊕ 0 leak 0 f 0 0 0 init duplexing 0

  70. Encryption? key 0 0 ⊕ 0 0 f 0 0 0 init duplexing 0

  71. Encryption key ciphertext1 plaintext1 ⊕ 0 0 ⊕ 0 0 f 0 0 0 init duplexing 0

  72. Authenticated Encryption key tag1 ciphertext1 plaintext1 ⊕ 0 0 ⊕ ⊕ 0 0 f f 0 0 0 init duplexing duplexing 0

  73. Sessions key tag1 ciphertext2 tag2 ciphertext1 plaintext2 plaintext1 ⊕ ⊕ 0 0 ⊕ ⊕ ⊕ 0 0 f f f f 0 0 0 init duplexing duplexing duplexing duplexing 0

  74. Strobe myProtocol = Strobe_init (“myWebsite.com”) myProtocol. KEY (sharedSecret) buffer += myProtocol. send_ENC (“GET /”) buffer += myProtocol. send_MAC (len=16) // send the buffer // receive a ciphertext message = myProtocol. recv_ENC (ciphertext[:-16]) ok = myProtocol. recv_MAC (ciphertext[-16:]) if !ok { // reset the connection }

  76. Hash Function myHash = Strobe_init (“hash”) myHash. AD (“something to be hashed”) hash = myHash. PRF (outputLen=16)

  77. Key Derivation Function KDF = Strobe_init (“deriving keys”) KDF. KEY (keyExchangeOutput) keys = KDF. PRF (outputLen=32) key1 = keys[:16] key2 = keys[16:]

  78. operation = AD data = 010100… ⊕ ⊕

  79. operation = AD operation = send_MAC data = 010100… tag len = 16 ⊕ ⊕ ⊕ f

  80. operation = KEY data = 010100… 0 0 0 ⊕ 0 f 0 0 0 init 0

  81. operation = KEY operation = send_ENC data = 010100… data = hello 0 ciphertext 0 0 ⊕ ⊕ ⊕ 0 f f 0 0 0 init 0

  82. operation = send_MAC operation = KEY operation = send_ENC data = 010100… data = hello tag 0 ciphertext 0 len = 16 0 ⊕ ⊕ ⊕ ⊕ 0 f f f 0 0 0 init 0

  83. strobe.sourceforge.io

  84. Outline 1.SHA-3 2.derived functions 3.derived protocols 4.Disco?

  85. Noise + Strobe = Disco www.discocrypto.com

  86. I write about crypto at www.cryptologie.net I tweet my mind on twitter.com/lyon01_david and I work here

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

> World of Matter World of Information The intersection between the world of data,

> World of Matter World of Information The intersection between the world of data,

> > > World of Matter World of Information The intersection between the world of data, designs, and ideas, and the physical world of materials, machines, and living things" > > > > > The days of

694 views • 47 slides
Key Events in World War II The events of World War World War II lasted for Over fifty million

Key Events in World War II The events of World War World War II lasted for Over fifty million

Key Events in World War II The events of World War World War II lasted for Over fifty million people II have shaped the six years. It began on were killed during World world we know today the 3rd September War II, which affected and will

256 views • 14 slides
INTRODUCTION THE WORLD CUP OF AIR RACING P 1 AIR RACE 1 WORLD CUP AIR RACE 1 WORLD CUP THE

INTRODUCTION THE WORLD CUP OF AIR RACING P 1 AIR RACE 1 WORLD CUP AIR RACE 1 WORLD CUP THE

INTRODUCTION THE WORLD CUP OF AIR RACING P 1 AIR RACE 1 WORLD CUP AIR RACE 1 WORLD CUP THE FUTURE OF FAST 127 1.35 Billion Cumulative Audience Reach Countries TV cover The Air Race 1 World Cup Air Race 1 is the fastest motorsport in the

364 views • 10 slides
The world ld is is going going downhill ll The world ld is is getting better Theres a lot

The world ld is is going going downhill ll The world ld is is getting better Theres a lot

The world ld is is going going downhill ll The world ld is is getting better Theres a lot we can do Christo Fabricius The world is going downhill Theres just too many of us.. The Great Acceleration: Socio-economic trends The planet

689 views • 22 slides
Third World Party Convention President Toshio Suzuki World Government Institute, World Party,

Third World Party Convention President Toshio Suzuki World Government Institute, World Party,

Presentation at Third World Party Convention President Toshio Suzuki World Government Institute, World Party, World Citizen Network http://www.w-g.jp/wp/conv-wp/presentations.htm 15 December 2019 I. Problems of Present World 1. War and

388 views • 10 slides
10. The First World War and the Russian Revolution 10.1 The Causes of the First World War 10.2

10. The First World War and the Russian Revolution 10.1 The Causes of the First World War 10.2

10. The First World War and the Russian Revolution 10.1 The Causes of the First World War 10.2 The Economic and Social Impact of the war 10.3 The Peace Settlement 10.4 The Revolution of 1917 and its Effects 10.1 The Causes of the First World

855 views • 37 slides
1 Committed to Connecting the World Committed to Connecting the World Regulatory Responses

1 Committed to Connecting the World Committed to Connecting the World Regulatory Responses

Committed to Connecting the World Committed to Connecting the World 14 th Global Symposium for Regulators Why Does Competition Matter? Capitalizing on the potential of the digital world Puts pressure on incumbent operators Disrupts

700 views • 3 slides
1 Committed to Connecting the World Committed to Connecting the World RIA: main challenges RIA

1 Committed to Connecting the World Committed to Connecting the World RIA: main challenges RIA

Committed to Connecting the World Committed to Connecting the World 14 th Global Symposium for Regulators What is RIA? Capitalizing on the potential of the digital world A systemic approach to critically assessing the positive and

413 views • 3 slides
The Healer of the World God so loved the world that he gave his only son, so that all who believe

The Healer of the World God so loved the world that he gave his only son, so that all who believe

The Healer of the World God so loved the world that he gave his only son, so that all who believe in him may not die, but may have eternal life. For God did not send his son into the world to condemn the world, but so that through him the

975 views • 50 slides
World Building In A Nutshell World building is the process of constructing an imaginary

World Building In A Nutshell World building is the process of constructing an imaginary

World Building In A Nutshell World building is the process of constructing an imaginary world. World building produces a rich setting that appeals to certain types of players. In addition to Aesthetics , we can use GNS Theory and

796 views • 40 slides
1 Committed to Connecting the World Committed to Connecting the World Monitoring deployment and

1 Committed to Connecting the World Committed to Connecting the World Monitoring deployment and

Committed to Connecting the World Committed to Connecting the World 14 th Global Symposium for Regulators Results-oriented performance management Capitalizing on the potential of the digital world Key performance indicators measure in

266 views • 3 slides
A legacy to remember them Marking the centenary of the First World War The First World War

A legacy to remember them Marking the centenary of the First World War The First World War

Wiltshire Commemorates the First World War Community tree planting A legacy to remember them Marking the centenary of the First World War The First World War started on 28 July 1914 Wiltshire commemorated the start with a service at

220 views • 10 slides
World trade has grown since 1930.... World Trade (in percent of GDP), 1930-2015 70 60 50 World

World trade has grown since 1930.... World Trade (in percent of GDP), 1930-2015 70 60 50 World

World trade has grown since 1930.... World Trade (in percent of GDP), 1930-2015 70 60 50 World Trade (% GDP) 40 30 20 10 0 Source: 1930-1959 from Ortiz-Ospina and Roser (2017). 1960-2015 from World Bank WDI Database. FDI and GDP ....

304 views • 5 slides
XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( ) 2006.10 RSS is cool ! RSS RSS Really Simple Syndication Tired of checking your favorite news and blogs sites everyday?

786 views • 75 slides
12. The Second World War and Contemporary Europe 12.1 The Causes and Course of the Second World

12. The Second World War and Contemporary Europe 12.1 The Causes and Course of the Second World

12. The Second World War and Contemporary Europe 12.1 The Causes and Course of the Second World War 12.2 Postwar Europe 12.3 Science, Philosophy, the Arts and Religion 12.4 Social and Political Developments 12.1 The Causes and Course of the

732 views • 41 slides
1 The world needs fixed nitrogen Average fertilizer input (kg ha yr ) World

1 The world needs fixed nitrogen Average fertilizer input (kg ha yr ) World

1 The world needs fixed nitrogen Average fertilizer input (kg ha yr ) World population (millions) % World population Erisman, JW, et al. Nature , 2008. Year 2 Problems with Haber Bosch Energy-intensive Creates

717 views • 29 slides
Prt rt

Prt rt

Prt rt s rt rst trs st

626 views • 36 slides
SpongeFiles Mitigating Data Skew in MapReduce Using Distributed Memory Khaled Elmeleegy

SpongeFiles Mitigating Data Skew in MapReduce Using Distributed Memory Khaled Elmeleegy

SpongeFiles Mitigating Data Skew in MapReduce Using Distributed Memory Khaled Elmeleegy Benjamin Reed Christopher Olston Turn Inc. Facebook Inc. Google Inc. kelmeleegy@turn.com br33d@fb.com olston@google.com 1 Background

434 views • 25 slides
Keccak Guido Bertoni 1 Joan Daemen 1 Michal Peeters 2 Gilles Van Assche 1 1 STMicroelectronics 2

Keccak Guido Bertoni 1 Joan Daemen 1 Michal Peeters 2 Gilles Van Assche 1 1 STMicroelectronics 2

Keccak Guido Bertoni 1 Joan Daemen 1 Michal Peeters 2 Gilles Van Assche 1 1 STMicroelectronics 2 NXP Semiconductors Eurocrypt 2013 Athens, Greece, May 28th, 2013 1 / 57 Symmetric crypto: what textbooks and intros say Symmetric

915 views • 67 slides
Overview of the Sponge, Duplex and Farfalle constructions Gilles Van Assche 1 1 STMicroelectronics

Overview of the Sponge, Duplex and Farfalle constructions Gilles Van Assche 1 1 STMicroelectronics

Overview of the Sponge, Duplex and Farfalle constructions Gilles Van Assche 1 1 STMicroelectronics Summer school on real-world crypto and privacy ibenik, Croatia, June 2019 Based on joint work with Elena Andreeva, Guido Bertoni, Joan Daemen,

907 views • 88 slides
Sponge-based PRNGs A Provable Security Perspective Stefano Tessaro UCSB Base on joint work with

Sponge-based PRNGs A Provable Security Perspective Stefano Tessaro UCSB Base on joint work with

Sponge-based PRNGs A Provable Security Perspective Stefano Tessaro UCSB Base on joint work with Peter Gai (IST Austria) wr0ng Paris, April 30, 2017 The Sponge Construction [BDP V A08] M {0,1}* M 1 M 2 M L r-bit blocks: r 0 H (M)

820 views • 42 slides
The PHOTON Family of Lightweight Hash Functions Jian Guo, Thomas Peyrin and Axel Poschmann I2R

The PHOTON Family of Lightweight Hash Functions Jian Guo, Thomas Peyrin and Axel Poschmann I2R

Introduction Generalized Sponge Serial MDS PHOTON Security Conclusion The PHOTON Family of Lightweight Hash Functions Jian Guo, Thomas Peyrin and Axel Poschmann I2R and NTU ECRYPT II Hash Workshop 2011 Tallinn, Estonia Introduction

579 views • 33 slides
KangarooTwelve draft-viguier-kangarootwelve-00 t Viguier 1 Beno CFRG Meeting, July 18, 2017

KangarooTwelve draft-viguier-kangarootwelve-00 t Viguier 1 Beno CFRG Meeting, July 18, 2017

KangarooTwelve draft-viguier-kangarootwelve-00 t Viguier 1 Beno CFRG Meeting, July 18, 2017 1 Radboud University, Nijmegen, The Netherlands 1 / 12 What is KangarooTwelve ? An extendable output function (XOF) like SHAKE128, with: an

355 views • 22 slides
Innovations in permutation-based encryption & authentication . based on joint work with

Innovations in permutation-based encryption & authentication . based on joint work with

Innovations in permutation-based encryption & authentication . based on joint work with Fast Software Encryption Conference 2017 1 Joan Daemen 1 , 2 Guido Bertoni 1 , Michal Peeters 1 , Gilles Van Assche 1 and Ronny Van Keer 1 1

855 views • 30 slides

More recommend