Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
kbolino
on Sept 24, 2012
|
parent
|
context
|
favorite
| on:
SHA-3 to Be Announced
Is there something about HMAC, which can augment any hash function, that makes it insufficient for the task?
tptacek
on Sept 24, 2012
|
next
[–]
Yes. HMAC is very slow. Also, length extension is a pernicious and scary little property to have lurking around your crypto designs; you want it gone.
moonboots
on Sept 24, 2012
|
prev
[–]
A hash function immune to length extension attacks is more fool-proof than HMAC because there is no additional construct required. It's also faster because it requires no additional passes over data.
Join us for
AI Startup School
this June 16-17 in San Francisco!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
