SMASH is a cryptographic hash function which was created by . SMASH comes in two versions: 256-bit and 512-bit. Each version was supposed to rival SHA-256 and SHA-512, respectively, however, shortly after the SMASH presentation at , an attack vector against SMASH was discovered which left the hash broken.
The message length was limited to less than 2128 for SMASH-256 and 2256 for SMASH-512.
Input: 256/512-bit message blocks and
The function f is a complex compression function consisting of H-Rounds and L-Rounds using , linear diffusion and variable rotations.
The in SMASH are derived versions from the ones.