Back to Search
Start Over
On subset-resilient hash function families.
- Source :
- Designs, Codes & Cryptography; Mar2022, Vol. 90 Issue 3, p719-758, 40p
- Publication Year :
- 2022
-
Abstract
- In this paper, we analyze the security of subset-resilient hash function families, which is first proposed as a requirement of a hash-based signature scheme called HORS. Let H be a family of functions mapping an element to a subset of size at most k. (r, k)-subset resilience guarantees that given a random function H from H , it is hard to find an (r + 1) -tuple (x , x 1 , ... , x r) such that (1) H(x) is covered by the union of H (x i) and (2) x is not equal to any x i . Subset resilience and its variants are related to nearly all existing stateless hash-based signature schemes, but the power of this security notion is lacking in research. We present three results on subset resilience. First, we show a generic quantum attack against subset resilience, whose time complexity is smaller than simply implementing Grover's search. Second, we show that subset-resilient hash function families imply the existence of distributional collision-resistant hash function families. Informally, distributional collision resistance is a relaxation of collision resistance, which guarantees that it is hard to find a uniform collision for a hash function. This result implies a comparison among the power of subset resilience, collision resistance, and distributional collision resistance. Third, we prove the fully black-box separation from one-way permutations. [ABSTRACT FROM AUTHOR]
- Subjects :
- PERMUTATIONS
Subjects
Details
- Language :
- English
- ISSN :
- 09251022
- Volume :
- 90
- Issue :
- 3
- Database :
- Complementary Index
- Journal :
- Designs, Codes & Cryptography
- Publication Type :
- Academic Journal
- Accession number :
- 155684836
- Full Text :
- https://doi.org/10.1007/s10623-022-01008-4