[11331] in cryptography@c2.net mail archive
Re: Extracting unifrom randomness from noisy source
daemon@ATHENA.MIT.EDU (John Kelsey)
Mon Aug 5 23:46:12 2002
Date: Mon, 05 Aug 2002 23:16:49 -0400
To: <cryptography@wasabisystems.com>
From: John Kelsey <kelsey.j@ix.netcom.com>
In-Reply-To: <4.1.20020805114002.0095ddc0@pop.ix.netcom.com>
At 12:58 PM 8/5/02 -0400, John Kelsey wrote:
...
> (In fact, for CBC-MAC, we're losing about
>one bit of entropy to internal collisions for many strings that are
>plausibly going to be very common in our input distribution. XOR-MAC looks
>good to me, but this is all based on back-of-the-envelope analysis, not
>anything very serious yet.)
*bonk*
Of course, we expect to lose the essentially same amount of entropy in
either of these. It's just a question of where we lose the entropy.
--John "think before you hit the send button" Kelsey
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
