[144788] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

AES-GMAC as a hash

daemon@ATHENA.MIT.EDU (Darren J Moffat)
Mon Aug 31 12:03:13 2009

Date: Thu, 27 Aug 2009 15:45:55 +0100
From: Darren J Moffat <Darren.Moffat@Sun.COM>
In-reply-to: <9FB8FE44-09EF-4A2E-9502-11E417C26564@lrw.com>
To: cryptography@metzdowd.com

Ignoring performance for now what is the consensus on the suitabilty of 
using AES-GMAC not as MAC but as a hash ?

Would it be safe ?

The "key" input to AES-GMAC would be something well known to the data 
and/or software.

The only reason I'm asking is assuming it can be made to perform on some 
classes of machine better than or close to SHA256 if it would be worth 
considering as an available alternate now until SHA-3 is choosen.

-- 
Darren J Moffat

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[144788] in cryptography@c2.net mail archive

AES-GMAC as a hash

daemon@ATHENA.MIT.EDU (Darren J Moffat)Mon Aug 31 12:03:13 2009

daemon@ATHENA.MIT.EDU (Darren J Moffat)
Mon Aug 31 12:03:13 2009