Pull to refresh

Comments 1

For now "t1ha" is positioned as "not suitable for cryptography" at least until the independent cryptanalysis will completed and published. However, by some unpublished estimations of 128-bit version t1ha2 no less secure than SipHash.


In any case, I am very interested in independent third-party evaluation of t1ha2 properties.
To do this, the compression cycle and the final mixing (part-1, part-2) must be thoroughly analyzed.

Sign up to leave a comment.

Articles