Slashdot Mirror

← Back to Stories (view on slashdot.org)

NIST Opens Competition for a New Hash Algorithm

Posted by Zonk on from the not-that-long-to-wait dept.

Invisible Pink Unicorn writes "The National Institute of Standards and Technology has opened a public competition for the development of a new cryptographic hash algorithm, which will be called Secure Hash Algorithm-3 (SHA-3), and will augment the current algorithms specified in the Federal Information Processing Standard (FIPS) 180-2. This is in response to serious attacks reported in recent years against cryptographic hash algorithms, including SHA-1, and because SHA-1 and the SHA-2 family share a similar design. Submissions are being accepted through October 2008, and the competition timeline indicates that a winner will be announced in 2012."

16 of 187 comments (clear)

  1. hash algorithm hash recipe by Briden · · Score: 4, Funny

    i prefer the bubble bag method for making hash

  2. Encryption == Something to Hide by explosivejared · · Score: 4, Funny

    Why does the government promote creating new encryption methods when encrypting data so clearly means you have something to hide and are therefore guilty? I mean COME ON!

    --
    I got a catholic block.
  3. Encryption != Hashing by rock217 · · Score: 4, Informative

    Encryption implies that you can reconstruct the original string from the encoded. Methods like md5, sha1, etc are one way algorithms that cannot be reversed* in a realistic amount of time.



    * - Rainbow tables

    --
    Wah Sig!
  4. Re:What would happen if... by SigILL · · Score: 4, Insightful

    What would happen if you wrote a program to randomly create algorithms? Most of them would be rubbish, but occasionally you'd hit gold.

    Yes, and you'd spend most of your time trying to prove those algorithms are any good. That's the hard part anyhow, coming up with new algorithms isn't.
    --
    Error: password can't contain reverse spelling of ancient Chinese emperor
  5. Oblig. xkcd link by hellergood · · Score: 5, Funny

    http://xkcd.com/257/

  6. Re:I know I'm paranoid, but... by kebes · · Score: 5, Insightful

    I know I'm being paranoid, but did anybody else think that this is a way for the gummint to get a look at the various methods people are using to secure their data? I think you are being a bit paranoid! NIST is proposing an open competition to develop a new open standard for hashing. Anyone who wants to participate can do so. Anyone who wants to retain their "secret hashing method" can continue to keep it secret. It's not like the government is demanding anything. This is just a research agency promoting open research.

    Not to mention that I sincerely doubt that anyone is currently using some super-secret ultra-elite hashing algorithm that no one else knows about. This field of mathematics and security is quite mature and very much open to scrutiny currently. The current solutions are fully documented. I think the point here is that further progress isn't going to be made by lone researchers hiding their results: the only way forward is via more open collaboration.

    What better way to get the methods than to have a 'competition', something that will stroke the egos of crackers? If a cracker wants to sell his secrets at the cost of an ego-stroke, that's his choice. Nothing nefarious here. Again, NIST is not going to take these results and use them for evil ends (or even for commercial gain): they are hoping to create an open, public standard that everyone will benefit from (and which international experts in mathematics, cryptography, and computer security will analyze in detail). That's what NIST does.

    Sorry, but I think your paranoia is unfounded in this case!

    (Disclosure: I work with NIST, but have nothing to do with this project. Note that my opinions are my own and should not be construed as official statements from NIST.)
  7. Re:I don't get it by bmac83 · · Score: 4, Funny

    Pay attention. You will be given a short string of characters that describes how to get from the prize to where you currently are, but from the directions it will be impossible to find your way back to the prize.

  8. Re:I don't get it by Lord+Ender · · Score: 4, Insightful

    If you can claim to be the author of the US government standard cryptographic hash, you get to charge pretty much whatever you want in consulting fees.

    --
    A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
  9. Re:New Hash Algorithm Submission #1 by spun · · Score: 3, Insightful

    As you've admitted to being a libertarian, I suppose I should make one for you, too:

    1. Declare war on Big Government with bogus slogan "Let the free market fix __________"
    2. Announce plans to decrease funding to social programs
    3. Figure out that you have no one in any elected office in any country anywhere who can carry out 2.
    4. Announce that someone who has never professed to be a libertarian but holds a few libertarian ideals, is in fact a libertarian. Do the same for historical figures, especially anarchists.
    5. Make up bogus arguments about the magical free market that will never be put to any sort of test, due to 3., above.
    6. Parrot back tired arguments that were disproved hundreds of years ago, back in the days of lassez-faire. Conveniently forget about child labor, horrid working conditions, rampant pollution, institutionalized racism, debt slavery, and any other facts that show unregulated free market capitalism destroys lives.
    7. Cherry pick examples of deregulation and privatization, ignoring any cases that prove libertarian methods wrong.
    8. Try to convince other libertarians to all move to the same state so you can remedy point 2.
    9. Realize that convincing self-centered libertarians to do anything is like trying to herd cats.
    10. The rest of us grow bored with your childish, self involved, "Nyah nyah, you're not the boss of me!" political stance and ignore you, as libertarians have never managed to do anything more than talk.

    Wait, that's not funny, it's just sad.

    --
    - None can love freedom heartily, but good men; the rest love not freedom, but license. -- John Milton
  10. Very similar to the AES competition by Sycraft-fu · · Score: 5, Insightful

    Also done by NIST. I suppose you could be all paranoid and claim that AES was chosen so the that US government could snoop on you since, after all, the NSA signed off on it as being secure and they'd never tell the truth, right? Well, except for the fact that it was designed by a couple of Belgians and has also been signed off on by essentially every other respected crypto expert and organization there is.

    So that leaves you with two possible situations:

    1) That the NSA is so amazingly far ahead of everyone else in crypto that they were able to find something in AES that no one else has in over a decade. Also they are so confident in their knowledge that they believe nobody else will find it since if they did the results would be a big problem (AES is approved for classified data, and is used by US financial institutions).

    or

    2) AES is really secure, and the NSA is telling the truth.

    Now which is more likely? Also, supposing you believe option #1 then why trust any crypto? If the NSA really is so good that they can outdo the entire rest of the crypto community, well then they can probably break pretty much any of the cryptosystems out there. You can't trust any of them since the only people who would really know if they were insecure won't say.

    Seems extremely unlikely.

    Well, same deal with this hash competition. If you believe that the government will be able to pick one that is in fact something they can break, but that nobody else in the world will know about this then it doesn't matter, because their understanding is so far advanced that all hashes would have to be suspect.

    Given the extremely public, international, nature of things like this there really isn't any room for mistrust. I again point to the results of the AES competition. You want to talk about a cypher that has stood up to some extreme scrutiny, there you go.

    1. Re:Very similar to the AES competition by lgw · · Score: 5, Informative

      1) That the NSA is so amazingly far ahead of everyone else in crypto that they were able to find something in AES that no one else has in over a decade. When the DES standard was created, the NSA was so amazing far ahead of everyone else that they were able to find somehting in DES that no one else found for over a decade. The NSA provided very specific technical advice (without explanation) that was followed in the creation of DES. Many years later, the rest of the world caught up and discovered that the NSA had corrected a very subtle weakness in DES.

      The NSA has an actual track record here, and their motives have proven good so far. However, they claim that (due to lack of funding and too much competition from financial firms for math PhDs) they aren't so far ahead any more.
      --
      Socialism: a lie told by totalitarians and believed by fools.
    2. Re:Very similar to the AES competition by Llywelyn · · Score: 3, Informative

      It is worth emphasizing that the NSA has said that AES 128/192/256 can be used to protect information up to the secret level, and that top secret information can be secured with AES 192 or 256. That's a pretty strong statement coming from the NSA, which if acting rationally they would not want to leave weaknesses in something that is used to secure information that would be, by definition, "very damaging to the US and its interests if released."

      Now, it is possible that such statements are just for show, but it takes a belief that they are playing an incredulously deep game that they would make those statements as a denial and deception practice.

      --
      Integrate Keynote and LaTeX
    3. Re:Very similar to the AES competition by evilviper · · Score: 3, Insightful

      However, they claim that (due to lack of funding and too much competition from financial firms for math PhDs) they aren't so far ahead any more.

      You've got it wrong. They were decades ahead because nobody outside of the NSA was doing cryptography AT ALL. There was no real effort at all from the private sector.

      DES was really the ONE cryptographic algorithm that existed, anywhere, and even that could only be found internal to IBM, which was by far the biggest digital equipment company anywhere at the time.

      It isn't "too much competition" now, it's simply that, for the first time, they've got any competition at all.
      --
      Slashdot gets worse every day... Pipedot: News for nerds, without the corporate slant
    4. Re:Very similar to the AES competition by James+Youngman · · Score: 4, Informative

      If the NSA really is so good that they can outdo the entire rest of the crypto community, well then they can probably break pretty much any of the cryptosystems out there.
      Actually I think you're right, but to play Devil's Advocate for a moment, I will note that the UK government agency GCHQ developed a public-key cryptosystem between 1969 and 1973, significantly before Diffie and Hellman's (apparently) ground-breaking paper. So, government agencies are quite capable of beating the public state of the art and not telling anyone about it.
  11. Re:I don't get it by ajlitt · · Score: 4, Funny

    If you cannot comprehend the string, assume the party escort submission position. A party representative will arrive shortly to escort you to your prize and a party celebrating your reception of said prize. There will be cake.

  12. Re:No, you're right. by smallfries · · Score: 3, Informative

    Maybe you should chase the etymology one level deeper. If the original data cannot be recovered then it is not "hidden" but "destroyed". You may not believe that the term encryption means a two-way process with an available decryption function - but that is the definition that the crypto community uses, and so it's good enough for me.

    --
    Slashdot: where don knuth is an idiot because he cant grasp the awesome power of php