**Geoffrey Irving** @irving@mastodon.social · Jul 20, 2023, 10:39

**Geoffrey Irving** @irving@mastodon.social · Jul 20, 2023, 10:39

Geoffrey Irving @irving@mastodon.social

Jul 20, 2023, 10:39

Geoffrey Irving @irving@mastodon.social

The current default cryptographic hash functions are serial, in that you can’t efficiently use a cluster computers to hash a 10TB file, say.

When do people think this change? Concretely, when will the hash function people default to (e.g., the one used to hash Linux kernel distributions) have logarithmic circuit depth as a function of file size?

18% Before 2030
26% Before 2035
23% Before 2040
31% After 2040

**robryk** @robryk@qoto.org · 2023-07-20T13:20:51Z

robryk @robryk@qoto.org

@irving Whenever that's important we already use such functions: you can construct something with circuit depth of f(security parameter)*log(input size) by computing the Merkle tree root hash.

Jul 20, 2023, 13:20 · · · ·

**Geoffrey Irving** @irving@mastodon.social · Jul 20, 2023, 13:22

**Geoffrey Irving** @irving@mastodon.social · Jul 20, 2023, 13:22

Jul 20, 2023, 13:22

Geoffrey Irving @irving@mastodon.social

@robryk I know that, but your statement should be amended to "whenever it is required". It would already be quite useful even for normal O(MB) file sizes to be able to use parallelism, which is why I am asking about the default hash.

Trending now

Resources

Developers

What is Mastodon?

qoto.org

More…