17 Dec '12, 5am

Numbers + graph for creating collisions in pw hashes plus a side trip into the economics of cracking vs bitcoin mining

Date: Mon, 17 Dec 2012 00:19:40 -0500 From: Matt Weir <cweir@...edu> To: crypt-dev@...ts.openwall.com Subject: Re: Intentionally Increasing Collisions in Password Hashing Algorithms One of the problems Ive been running into is I dont have a decent model/framework to try and evaluate if increasing collisions is a good idea or not. Below is my first attempt at creating that model for a very, (very), low security case. I tried to give at least a basic justification for all the assumptions I made, but everything here is up for debate. The first step is to define the maximum amount of risk allowed due to collisions during an online attack. This will in turn determine the minimum hash length and the maximum number of collisions we can intentionally cause. Online attack threat: This site makes no attempt to stop a sophisticated attacker who performs online guessing attacks. The p...

Full article: http://www.openwall.com/lists/crypt-dev/2012/12/17/1

Tweets

Economics of Bitcoin: What am I doing here? via...

economicsofbitcoin.com 17 Dec '12, 6pm

Let me tell you something about me. I want to explain why I started this blog and what I intend to do with it. My primary ...