大家都经常用MD5算法,最近RC4,SHA的作者麻省的XX教授发布了一个MD6算法,可算得上是MD5的改进版.
安全性大大改进,可算做能完全代替MD5的散列验证算法.
MD6相较MD5的优点如下.
1.Large input message block size
2.provably resistant to differential attacks
3.Alternative sequential mode
4.Key input K??of up to 512 bits?? K is input to every compression function
5.1024-bit intermediate (chaining) value root truncated to desired final length? Location (level,index) input to each node
6. Root bit ?(aka “z-bit” or “pumpkin bit”) input to each compression function
7. Operations on 64-bit words The following operations only: –XOR–AND–SHIFT by fixed amounts:
相关介绍:http://groups.csail.mit.edu/cis/md6/index.html
A C implementation of MD6. This code was submitted to NIST as the reference, optimized 32-bit and optimized 64-bit implementations.
2009-01-15: The code was revised to correct a buffer overflow error.
2009-04-15: The code was revised to correct the handling of the final chaining variable truncation. See the changelist for more details.