The security of the cipher block chaining message authentication code
Journal of Computer and System Sciences
On the Length of Cryptographic Hash-Values Used in Identification Schemes
CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
PayWord and MicroMint: Two Simple Micropayment Schemes
Proceedings of the International Workshop on Security Protocols
Design Validations for Discrete Logarithm Based Signature Schemes
PKC '00 Proceedings of the Third International Workshop on Practice and Theory in Public Key Cryptography: Public Key Cryptography
Anonymity and k-Choice Identities
Information Security and Cryptology
INDOCRYPT '08 Proceedings of the 9th International Conference on Cryptology in India: Progress in Cryptology
AFRICACRYPT '09 Proceedings of the 2nd International Conference on Cryptology in Africa: Progress in Cryptology
ACISP '09 Proceedings of the 14th Australasian Conference on Information Security and Privacy
Improved Generic Algorithms for 3-Collisions
ASIACRYPT '09 Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Security analysis of the mode of JH hash function
FSE'10 Proceedings of the 17th international conference on Fast software encryption
How secret-sharing can defeat terrorist fraud
Proceedings of the fourth ACM conference on Wireless network security
Provable chosen-target-forced-midfix preimage resistance
SAC'11 Proceedings of the 18th international conference on Selected Areas in Cryptography
Key-Dependent weakness of AES-Based ciphers under clockwise collision distinguisher
ICISC'12 Proceedings of the 15th international conference on Information Security and Cryptology
Fully homomorphic SIMD operations
Designs, Codes and Cryptography
Hi-index | 0.00 |
In this paper, we study multi-collision probability. For a hash function H:D →R with |R|=n, it has been believed that we can find an s-collision by hashing Q=n( s−−1)/ s times. We first show that this probability is at most 1/s! which is very small for large s. We next show that by hashing (s!)1/ s ×Q times, an s-collision is found with probability approximately 0.5 for sufficiently large n. Note that if s=2, it coincides with the usual birthday paradox. Hence it is a generalization of the birthday paradox to multi-collisions.