lcs Mixmaster Remailer wrote:
> Probably the best is to concatenate the output of multiple hashes. You
> could either use different ones like SHA and MD5, or you can get the
> effect of multiple hashes by just using SHA and putting a different
> constant prefix on the data for each instance. Use a '0' prefix,
> a '1' prefix, a '2' prefix and so on, until you have enough hash
> contexts to produce all the output you need.
Is this a secure way of increasing the number of bits returned by a
hash function?
I have always been puzzled by the patents on MDC-2 and MDC-4. They
are perfectly good schemes, I am sure, but they don't seem any better
than obvious alternatives. For example, if the answer to my question
is yes, you could use two Davies-Meyer arrangements with different
starting points. If you used an AES candidate for the block cipher,
you would get 256 bits of hash output, which would be plenty.
--
Pete
