[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

No Subject

To: [email protected]
From: [email protected]
Date: Mon, 4 Jul 1994 08:55:39 -0700
Comments: This message is NOT from the person listed in the Fromline. It is from an automated software remailing service operating atthat address. Please report problem mail to <[email protected]>.
Sender: [email protected]

I have followed with interest this discussion of passphrase
"entropy".  What I'm not clear on is the effect of a hashing 
algorithm on the final entropy.  If I come up with a "random" set 
of printable characters which contain 128 bits of entropy, and 
feed them to MD5, let's say, will I still have 128 bits of 
entropy on the output?  Or do I need some sort of safety margin 
above 128 bits to "be sure"?

What's lurking in the back of my mind is this -- if you enter 
something with LESS than 128 bits, the hashing algorithm has to 
"pad" or otherwise fill in the missing bits from <somewhere>.  
Now if I have entered a phrase with EXACTLY 128 bits of entropy, 
hypothetically, is that enough to have flushed the padding or 
whatever out of the pipeline?

Can we really treat MD5 as a "magic black box", or does the 
optimal input require a knowledge of how the box works?

    .

Follow-Ups:
- MD5 is 1=>1?
  - From: Roger Bryner <[email protected]>
- Logical Depth
  - From: [email protected] (Timothy C. May)

Prev by Date: Re: Pass Phrases
Next by Date: Re: Pass Phrases
Prev by thread: No Subject
Next by thread: MD5 is 1=>1?
Index(es):
- Date
- Thread