Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Quoting FIPS204 regarding Hash strength #25

Open
OR13 opened this issue Aug 28, 2024 · 0 comments
Open

Quoting FIPS204 regarding Hash strength #25

OR13 opened this issue Aug 28, 2024 · 0 comments

Comments

@OR13
Copy link
Collaborator

OR13 commented Aug 28, 2024
edited
Loading

See Section 5.4 of FIPS204

If the content to be signed is large, hashing of the content is often
performed at the application level.
For example, in the Cryptographic Message Syntax [29], a digest of the
content may be computed, and
that digest is signed along with other attributes. If the content is not
hashed at the application level, the
pre-hash version of ML-DSA signing may be used.

In order to maintain the same level of security strength when the content
is hashed at the application level
or using HashML-DSA , the digest that is signed needs to be generated using
an approved hash function
or XOF (e.g., from FIPS 180 [8] or FIPS 202 [7]) that provides at least 𝜆
bits of classical security strength
against both collision and second preimage attacks ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@OR13