lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 19 Jan 2014 18:01:25 +0100
From: Krisztián Pintér <pinterkr@...il.com>
To: discussions@...sword-hashing.net
Subject: my pre (if) submit proposal


here is my attempt at password hashing. i wrote about it on the list,
quite some time ago. the proposal has been polished since, but the
core is the same. also better documented. comments welcome either here
or in the document, see later.

quick overview: it is a sponge construction. the idea of a sponge
based key stretching is presented by Keccak authors. my proposal is an
extension of that concept that uses large memory by continually
squeezing data and reabsorbing it later in a different pattern.


doc:

https://docs.google.com/document/d/18R-qEAmL9WWh5zhGeBlvI7C6ikBAz6TF7MEtfPJK7m0

figure:

https://docs.google.com/drawings/d/1lr7P82bAVyl013Nc5kv9ju_w2Uw1DzbOtgF06k5Igwc


everything is subject to change.

Powered by blists - more mailing lists