Path: utzoo!utgpu!jarvis.csri.toronto.edu!clyde.concordia.ca!mcgill-vision!bloom-beacon!snorkelwacker!tut.cis.ohio-state.edu!zaphod.mps.ohio-state.edu!math.lsa.umich.edu!emv From: well!rsa@lll-crg.llnl.gov (RSA Data Security) Newsgroups: comp.archives Subject: [comp.virus] Re: Signature Programs Message-ID: <10815@stag.math.lsa.umich.edu> Date: 7 Feb 90 00:34:26 GMT Sender: news@math.lsa.umich.edu Reply-To: well!rsa@lll-crg.llnl.gov (RSA Data Security) Followup-To: comp.virus Lines: 59 Approved: emv@math.lsa.umich.edu (Edward Vielmetti) Archive-name: md4.rsa.paper/31-Jan-90 Original-posting-by: well!rsa@lll-crg.llnl.gov (RSA Data Security) Original-subject: Re: Signature Programs Archive-site: cert.sei.cmu.edu [128.237.253.5] Archive-directory: pub/virus-l/docs Archive-files: md4.rsa.paper Reposted-by: emv@math.lsa.umich.edu (Edward Vielmetti) The following paper is presented for review and discussion. It will be submitted to a number of conferences and MD4 will be proposed to a number of standards organizations. We encourage people to study and evaluate MD4. _________________________________________________________________ The MD4 Message Digest Algorithm -------------------------------- by Ronald L. Rivest MIT Laboratory for Computer Science, Cambridge, Mass. 02139 and RSA Data Security, Inc., Redwood City, California 94065 (C) Copyright 1989, 1990 RSA Data Security, Inc. (Version 1/29/90) Abstract: --------- This note describes the MD4 message digest algorithm. The algorithm takes as input an input message of arbitrary length and produces as output a 128-bit ``fingerprint'' or ``message digest'' of the input. It is conjectured that it is computationally infeasible to produce two messages having the same message digest, or to produce any message having a given prespecified target message digest. The MD4 algorithm is thus ideal for digital signature applications, where a large file must be ``compressed'' in a secure manner before being signed with the RSA public-key cryptosystem. The MD4 algorithm is designed to be quite fast on 32-bit machines. On a SUN Sparc station, it runs at 1,100,000 bytes/second. On a DEC MicroVax II, it runs at 70,000 bytes/second. In addition, the MD4 algorithm does not require any large substitution tables; the algorithm can be coded quite compactly. [Ed. Due to the length of this paper, I've placed it on the VIRUS-L/comp.virus document archive at cert.sei.cmu.edu, where it is available for anonymous FTP. The filename is: pub/virus-l/docs/md4.rsa.paper.] (C) Copyright 1989, 1990 RSA Data Security, Inc. All rights reserved.