Salvaging Merkle-Damgard for Practical Applications

  title={Salvaging Merkle-Damgard for Practical Applications},
  author={Yevgeniy Dodis and Thomas Ristenpart and Thomas Shrimpton},
  booktitle={IACR Cryptology ePrint Archive},
Many cryptographic applications of hash functions are analyzed in the random oracle model. Unfortunately, most concrete hash functions, including the SHA family, use the iterative (strengthened) Merkle-Damgård transform applied to a corresponding compression function. Moreover, it is well known that the resulting “structured” hash function cannot be generically used as a random oracle, even if the compression function is assumed to be ideal. This leaves a large disconnect between theory and… CONTINUE READING
Highly Influential
This paper has highly influenced 18 other papers. REVIEW HIGHLY INFLUENTIAL CITATIONS


Publications citing this paper.
Showing 1-10 of 57 extracted citations


Publications referenced by this paper.
Showing 1-10 of 39 references


  • U. Maurer, R. Renner, C. Holenstein
  • Impossibility Results on Reductions, and…
  • 2004
Highly Influential
8 Excerpts

and T

  • J. Black, P. Rogaway
  • Shrimpton. Black-Box Analysis of the Block-Cipher…
  • 2002
Highly Influential
6 Excerpts

Similar Papers

Loading similar papers…