Cryptography Stack Exchange

0 votes

1 answer

122 views

Preimage attack on FNV hash with multiple known initial and hash pairs

Walter Misar

reputation score 1

modified 1 hour ago

1 vote

3 answers

174 views

Security Protocol

poncho♦

reputation score 156212

answered 6 hours ago

1 vote

1 answer

427 views

Is the birthday paradox relevant here?

poncho♦

reputation score 156212

modified 17 hours ago

0 votes

1 answer

99 views

Applying a lattice attack to ECDSA signatures?

fgrieu♦

reputation score 151882

modified 2 days ago

1 vote

1 answer

112 views

Skitel's noncommutative algebra based algorithm variation question

CommunityBot

reputation score 1

modified Jun 20 at 17:06

2 votes

2 answers

2k views

About the Algebraic Normal Form (ANF) of S-Box in DES

Arsalan Vahi

reputation score 356

answered Jun 20 at 16:50

5 votes

1 answer

435 views

Can I identify the recipient of an OpenPGP message encrypted with the 'hidden-recipient' feature if I do have the recipient public key?

fgrieu♦

reputation score 151882

modified Jun 20 at 7:33

2 votes

1 answer

105 views

Intuition behind the auxiliary random variable Y in Micciancio–Walter's bit-security framework

Rosie Rosales

reputation score 1

modified Jun 19 at 14:50

1 vote

1 answer

127 views

Which is better SHA256 vs HMAC-SHA256 as key generation function for AES-GCM pipeline when the master key is strong?

Rosie Rosales

reputation score 1

modified Jun 19 at 14:44

1 vote

0 answers

290 views

Are there any hash functions heavily-optimized for modern GPUs?

Rosie Rosales

reputation score 1

modified Jun 19 at 14:42

1 vote

2 answers

135 views

What security definition(s) might be given to HMAC(k,m) ⊕ OTP?

Paul Uszak

reputation score 16131

modified Jun 15 at 22:32

3 votes

1 answer

156 views

Are Carter-Wegman MACs real things, or are they just theoretical toys?

Stream Siphon

reputation score 31

modified Jun 15 at 17:17

7 votes

1 answer

770 views

Why do post-quantum cryptosystems generally not allow checking ciphertext validity without the secret key?

poncho♦

reputation score 156212

modified Jun 15 at 15:33

1 vote

0 answers

26 views

Can DPF/DCF Key Generation Match the Efficiency of Beaver Triples, OLE and OT?

rzxh

reputation score 83

asked Jun 15 at 8:18

Stack Exchange Network

Explore our questions

Preimage attack on FNV hash with multiple known initial and hash pairs

Security Protocol

Is the birthday paradox relevant here?

Applying a lattice attack to ECDSA signatures?

Skitel's noncommutative algebra based algorithm variation question

About the Algebraic Normal Form (ANF) of S-Box in DES

Can I identify the recipient of an OpenPGP message encrypted with the 'hidden-recipient' feature if I do have the recipient public key?

Intuition behind the auxiliary random variable Y in Micciancio–Walter's bit-security framework

Which is better SHA256 vs HMAC-SHA256 as key generation function for AES-GCM pipeline when the master key is strong?

Are there any hash functions heavily-optimized for modern GPUs?

What security definition(s) might be given to HMAC(k,m) ⊕ OTP?

Are Carter-Wegman MACs real things, or are they just theoretical toys?

Why do post-quantum cryptosystems generally not allow checking ciphertext validity without the secret key?

Can DPF/DCF Key Generation Match the Efficiency of Beaver Triples, OLE and OT?

Hot Network Questions