Journal ArticleOPEN ACCESS

The MD2 hash function is not one-way

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2004) 3329 214-229
DOI: 10.1007/978-3-540-30539-2_16
15Citations
Citations of this article
52Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

MD2 is an early hash function developed by Ron Rivest for RSA Security, that produces message digests of 128 bits. In this paper, we show that MD2 does not reach the ideal security level of 2128. We describe preimage attacks against the underlying compression function, the best of which has complexity of 273. As a result, the full MD2 hash can be attacked in preimage with complexity of 2104. © International Association for Cryptologic Research 2004.

Cite

CITATION STYLE

APA

Muller, F. (2004). The MD2 hash function is not one-way. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 3329, 214–229. https://doi.org/10.1007/978-3-540-30539-2_16

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free