News
- 29 May 2009: The estimated performance figures of Lesamnta on the next generation Intel processers with AES instructions are available.
- 12 Feb. 2009: The reference and optimized implementations are updated.
- 19 Jan. 2009: The specification is updated.
- 26 Dec. 2008: The Lesamnta website is open.
What is Lesamnta?
Lesamnta is a new family of hash functions submitted to NIST for their cryptographic hash algorithm competition.
Lesamnta consists of four algorithms: Lesamnta-224/256/384/512. For each algorithm, the Merkle-Damgaard domain extension with an output function is adopted, and both of the compression function and the output function are in the Matyas-Meyer-Oseas (MMO) mode with distinct block ciphers.
Owing to the conservative design strategy, the security of Lesamnta is fairly reduced to the underlying block ciphers. We confirmed that Lesamnta is secure against various kinds of known attacks.
Lesamnta is also well-designed in implementation; since inner functions of Lesamnta are similar to AES, software/hardware implementation techniques of AES will be applicable to the implementation of Lesamnta.
Submission Packages
The latest version of the submission package and some of the parted contents can be downloaded.
- Full package (30 Oct. 2008) [download (ZIP, 13MB)]
- Specification version 1.0.1 (15 Jan. 2009) [download (PDF)]
- Reference implementation version 1.1 (12 Feb. 2009) [download (ZIP)]
- Optimized implementations version 1.1 (12 Feb. 2009) [download (ZIP)]
The obsolete documents and implementations can be found here.
Supplemental Information
The list of the newer coming security reports on security analysis, software and hardware implementations will be provided here.
Security Analysis
None.
Software Implementations
32-bit / 64-bit CPU
The estimated performance figures of Lesamnta on the next generation Intel processers with AES instructions are given below.
Table 1: Performance of Lesamnta with AES instructions on 32/64-bit Intel CPUs
| Intel AES instructions set (cycles/byte) | ||
|---|---|---|
| 32-bit mode | 64-bit mode | |
| Lesamnta-256 | 24.5 | 23.0 |
| Lesamnta-512 | 14.9 | 12.8 |
8-bit CPU
- "A Comparative Study on RAM Requirements of Various SHA-3 Candidates on Low-cost 8-bit CPUs", Kota Ideguchi, Toru Owada, Hirotaka Yoshida. (29 May 2009) [download (PDF)]
Hardware Implementations
None.
Links
- Cryptographic Hash Project (by NIST)
- SHA-3 Zoo (in ECRYPT II)
- NIST hash function competition (in Wikipedia)