@inproceedings{69ecfe85ac8b4cdda4f55264bd0d9df4,
title = "Higher order universal one-way hash functions from the subset sum assumption",
abstract = "Universal One-Way Hash Functions (UOWHFs) may be used in place of collision-resistant functions in many public-key cryptographic applications. At Asiacrypt 2004, Hong, Preneel and Lee introduced the stronger security notion of higher order UOWHFs to allow construction of long-input UOWHFs using the Merkle-Damg{\aa}rd domain extender. However, they did not provide any provably secure constructions for higher order UOWHFs. We show that the subset sum hash function is a kth order Universal One-Way Hash Function (hashing n bits to m < n bits) under the Subset Sum assumption for k = O(log n). Therefore we strengthen a previous result of Impagliazzo and Naor, who showed that the subset sum hash function is a UOWHF under the Subset Sum assumption. We believe our result is of theoretical interest; as far as we are aware, it is the first example of a natural and computationally efficient UOWHF which is also a provably secure higher order UOWHF under the same well-known cryptographic assumption, whereas this assumption does not seem sufficient to prove its collision-resistance. A consequence of our result is that one can apply the Merkle-Damg{\aa}rd extender to the subset sum compression function with 'extension factor' k + 1, while losing (at most) about k bits of UOWHF security relative to the UOWHF security of the compression function. The method also leads to a saving of up to m log(k + 1) bits in key length relative to the Shoup XOR-Mask domain extender applied to the subset sum compression function.",
author = "Ron Steinfeld and Josef Pieprzyk and Huaxiong Wang",
year = "2006",
doi = "10.1007/11745853_11",
language = "English",
isbn = "3540338519",
volume = "3958 LNCS",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer, Springer Nature",
pages = "157--173",
editor = "Moti Yung and Yevgeniy Dodis and Aggelos Kiayias and Tal Malkin",
booktitle = "Public Key Cryptography - PKC 2006 - 9th International Conference on Theory and Practice in Public-Key Cryptography, Proceedings",
address = "United States",
note = "9th International Conference on Theory and Practice in Public-Key Cryptography, PKC 2006 ; Conference date: 24-04-2006 Through 26-04-2006",
}