[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Spritz with Scrypt
- To: Ryan Carboni <firstname.lastname@example.org>, email@example.com
- Subject: Re: Spritz with Scrypt
- From: Colin Percival <firstname.lastname@example.org>
- Date: Tue, 9 Feb 2016 13:18:07 -0800
- In-reply-to: <CAO7N=i34iQhugLEzdGt8VBunUhbLu--+BZez7GBKH+bL9Tf15w@mail.gmail.com>
- References: <CAO7N=i34iQhugLEzdGt8VBunUhbLu--+BZez7GBKH+bL9Tf15w@mail.gmail.com>
On 02/09/16 10:12, Ryan Carboni wrote:
> Given that Spritz is a sponge function, with reasonable security, and is based
> on permuting bytes, which is difficult to unroll in hardware, would
> Scrypt-Spritz work better?
The scrypt definition was designed to be part of a family with pluggable
operations. That said, it was hashes and block ciphers; it looks like spritz
is a stream cipher, so I'm not entirely sure how you'd fit it in...
As for whether it's more secure, that depends on hardware circuit sizes and
performance and how fast you can implement it in a CPU.
Security Officer Emeritus, FreeBSD | The power to serve
Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid