From e5980fe8edaf25a88b501fae7b8da41756c59439 Mon Sep 17 00:00:00 2001
From: zooko <>
Date: Wed, 4 Mar 2009 21:50:18 +0000
Subject: [PATCH] edit irRUPT security

[Imported from Trac: page Bibliography, version 35]
---
 Bibliography.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Bibliography.md b/Bibliography.md
index d9e6a0b..82021aa 100644
--- a/Bibliography.md
+++ b/Bibliography.md
@@ -11,7 +11,7 @@ Here are some papers that are potentially of interest.
 
 [ChaChaCha20](http://cr.yp.to/chacha.html) even better stream cipher; It is probably slightly safer than Salsa and it is certainly slightly faster.
 
-[EnRUPT](http://enrupt.com) a very simple, fast, and flexible primitive which could be used as stream cipher, secure hash function, or MAC (the first two are primitives that we currently need, and the third one -- MAC -- is a primitive that we may want in the future) and which relies for its security on a large number of rounds.  The question of how many rounds to use is decided by semi-automated cryptanalysis.  (Note: the stream-hash version of enRUPT, known as "irRUPT" has been shown to be insecure in the SHA-3 contest.  The traditional Merkle-Damgard variant -- mdRUPT -- is probably secure.)
+[EnRUPT](http://enrupt.com) a very simple, fast, and flexible primitive which could be used as stream cipher, secure hash function, or MAC (the first two are primitives that we currently need, and the third one -- MAC -- is a primitive that we may want in the future) and which relies for its security on a large number of rounds.  The question of how many rounds to use is decided by semi-automated cryptanalysis.  (Note: the stream-hash version of enRUPT, known as "irRUPT" has been shown to be insecure in the SHA-3 contest when used with the number of rounds originally recommended.  The traditional Merkle-Damgard variant -- mdRUPT -- is probably secure.  Also irRUPT is probably secure, and still reasonably fast, with a few more rounds.)
 
 [Cryptanalysis of the Tiger Hash Function](https://online.tu-graz.ac.at/tug_online/voe_main2.getvolltext?pDocumentNr=81263) by Mendel and RIjmen