notes

HashFunction.md (2061B)

---

 # Hash Function
 
 Ch. 5
 
 **Definition:** A hash function is a function f(k) that takes a key value k (x.r = k where x is an object) and outputs a natural number.
 
 f : K -> N where K is the set of all possible keys and N is the natural numbers. 
 
 Oftentimes we also want to state that the set of valid outputs (image of f) is from 0 to m-1 where m is the length of the array we are using to store the objects of the given hash value.
 
 ### n-bit hash functions
 
 **Definition:** n-bit hash functions are hash functions such that their image is the natural numbers from 0 to 2^n-1.
 
 These hash function can then map to all permuations of bits with a length of n.
 
 ### Important aspects of the hashing function
 
 1. Speed
 2. One-way
 3. Deterministic
 4. Uniform
 
 Speed - this means the time to compute the hash for the inputs is generally fast
 
 One-way - this means it is hard to go the opposite direction namely from N -> K
 
 Deterministic - this means for the same input the output should always be the same
 
 Uniform - the distribution, with respect to K, should be roughly uniform across the image of the function - [0, m-1]
 
 ### Perfect
 
 A hash function is perfect if for all valid inputs, there are no collisions (one-to-one). 
 
 $f:K \to N$  is a perfect hash function if 
 $\forall x,y\in K, f(x) \neq f(y) \text{ where } y \neq x$
 
 ## Cryptographic hash functions
 
 The above is discussing hash functions, primarily in the context of [hashtables](HashTable.md), but expectations differ when using hash functions for cryptography.
 
 ### Requirements for a good cryptographic hash function
 
 1. Deterministic
 2. Any size input results in a fixed size output
 3. Preimage resistance
     - Given y such that hash(x) = y it shouldn't be reasonable to find x.
 4. 2nd preimage resistance
     - Given x,y such that hash(x) = y it shouldn't be reasonable to find x' such that hash(x') = y.
 5. Collision resistance
     - It isn't reasonable to find x != z such that hash(x) = hash(z)
         - This was the broken expectation that led to sha-1 and md5 being considered insecure