论文信息 - Using Spritz as a Password-Based Key Derivation Function

Using Spritz as a Password-Based Key Derivation Function

Even if combined with other techniques, passwords are still the main way of authentication in many services and systems. Attackers can usually test many passwords very quickly when using standard hash functions, so specific password hashing algorithms have been designed to slow down brute force attacks.

Antonio Zamora | Rafael Álvarez | Rafael Álvarez | Antonio Zamora

[1] Martin E. Hellman,et al. A cryptanalytic time-memory trade-off , 1980, IEEE Trans. Inf. Theory.

[2] Bartosz Zoltak. Statistical weakness in Spritz against VMPC-R: in search for the RC4 replacement , 2014, IACR Cryptol. ePrint Arch..

[3] Stefan Lucks,et al. The Catena Password-Scrambling Framework , 2015 .

[4] B Guido,et al. Cryptographic sponge functions , 2011 .

[5] David Mazières,et al. A future-adaptive password scheme , 1999 .

[6] Ronald L. Rivest,et al. Spritz - a spongy RC4-like stream cipher and hash function , 2016, IACR Cryptol. ePrint Arch..

[7] Adi Shamir,et al. Weaknesses in the Key Scheduling Algorithm of RC4 , 2001, Selected Areas in Cryptography.

[8] Andreas Klein,et al. Attacks on the RC4 stream cipher , 2008, Des. Codes Cryptogr..

[9] Paulo S. L. M. Barreto,et al. Lyra2: password hashing scheme with improved security against time-memory trade-offs. , 2017 .

[10] Goutam Paul,et al. RC4: (Non-)Random Words from (Non-)Random Permutations , 2011, IACR Cryptology ePrint Archive.

[11] Goutam Paul,et al. RC4 Stream Cipher and Its Variants , 2011 .