Recall that the sponge construction describes how to turn a public random permutation into a cryptographic hash function. Once the data to be hashed has been padded, the next step is to absorb the data r bits at a time.

blk = <0>
while not done:
    xor the next r bits of data into the first r bits of blk
    blk = p(blk)

As a convenient (but not secure because it's too small) public random permutation, lets use the AES S-box for p. What is blk after absorbing each of the following when r=4 bits. Give your answer as exactly either 2 hexadecimal digits or 8 binary digits with no spaces (eg, 0A or 00001010). Note that the data is already padded and you should restart at blk=<0> each for each computation

Data: 1001  Resulting blk:____

Data 10011001  Resulting blk:_____

Data 100110011001  Resulting blk:____

 

 

 

Transcribed Image Text:

Table 4.3 AES S-Box: Substitution values in hexadecimal notation for input byte (xy) 1 4 8 А В 0| 63 7B F2 6B 6F 36 3F F7 CC 34 E に82K出%m乃明为的从呢吓s 刀引配尔%妍路D唱卧姐阳D3明 合芝8幻的9况E印姐努么即a%高 0Eg九郎》以nnさm叭的相%巴品 配的沙不引助H配趴正的即你 に2日%8肥以以正昭心科及幻幻力 5822出国网函幻旺的%助多正为 52队好配过4088u明4 7E8%2男5巧口船犯心的阳外8 お#%以咀卧肠旺 88%8的函 引4见护29如吧48即 3仍%G从即田尔配gu0伍%=m 27883R8m和B年以打巧时%8 に犯即口路叭即心ga28%狂昭M Sさ88856s品卧队刀引配