Extracting unifrom randomness from noisy source
John Kelsey
kelsey.j at ix.netcom.com
Mon Aug 5 23:16:49 EDT 2002
At 12:58 PM 8/5/02 -0400, John Kelsey wrote:
...
> (In fact, for CBC-MAC, we're losing about
>one bit of entropy to internal collisions for many strings that are
>plausibly going to be very common in our input distribution. XOR-MAC looks
>good to me, but this is all based on back-of-the-envelope analysis, not
>anything very serious yet.)
*bonk*
Of course, we expect to lose the essentially same amount of entropy in
either of these. It's just a question of where we lose the entropy.
--John "think before you hit the send button" Kelsey
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list