You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
kerl_squeeze function produces trits in chunks by HASH_LENGTH_TRIT. The code here looks suspicious.
First, it reinitializes keccak state and absorbs (inverted) bits that have just been squeezed. This makes the next HASH_LENGTH_TRIT output trits completely dependent on the previous ones (but not the secret state maintained by keccak state). This may potentially reduce security of the hash/tag/key produced.
Second, if the length of the output is HASH_LENGTH_TRIT then the lines mentioned just waste computational resources without producing any result, unless the new state is going to be used later. But in that case security may be compromised due to the first note above.
The text was updated successfully, but these errors were encountered:
kerl_squeezefunction produces trits in chunks byHASH_LENGTH_TRIT. The code here looks suspicious.First, it reinitializes keccak state and absorbs (inverted) bits that have just been squeezed. This makes the next
HASH_LENGTH_TRIToutput trits completely dependent on the previous ones (but not the secret state maintained by keccak state). This may potentially reduce security of the hash/tag/key produced.Second, if the length of the output is
HASH_LENGTH_TRITthen the lines mentioned just waste computational resources without producing any result, unless the new state is going to be used later. But in that case security may be compromised due to the first note above.The text was updated successfully, but these errors were encountered: