Additional Proposed Hash Function (Forwarded)

David Shaw dshaw at jabberwocky.com
Fri Dec 5 23:44:46 EST 2003


On Thu, Dec 04, 2003 at 05:29:32PM -0500, Steve Bellovin wrote:
> 
> ------- Forwarded Message
> 
> Date: Tue, 02 Dec 2003 13:40:32 -0500
> To: ebarker at nist.gov
> From: Elaine Barker <elaine.barker at nist.gov>
> Subject: Additional Proposed Hash Function
> 
> NIST is proposing a change notice for FIPS 180-2, the Secure Hash Standard 
> that will specify an additional hash function, SHA-224, that is based on 
> SHA-256. The change notice is available at 
> http://csrc.nist.gov/publications/drafts.html. NIST requests comments for 
> the change notice by January 16, 2004. Comments should be addressed to 
> ebarker at nist.gov.

Does anyone know what the story is behind this?  It seems to be the
same sort of relationship that SHA-384 has to SHA-512 - that is, the
same basic algorithm, the same amount of work to calculate it, but
with different initial values, and some bits chopped off at the end.
It all seems a lot of effort just to save 4 bytes in the final hash.

David
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list