# SHA-3 (Keccak)

SHA-3 is the newest family of secure hash functions, standardized by NIST in 2015. Unlike SHA-2—which is based on the Merkle–Damgård construction—SHA-3 uses the Keccak algorithm and a sponge construction to produce a fixed-length digest.

---

## How It Works

1. **Absorb:**  
   The input message is divided into blocks and absorbed into a large internal state.

2. **Permutation:**  
   The state is transformed using the Keccak‑f function, which applies multiple rounds of XORs, rotations, and shifts to mix the bits thoroughly.

3. **Squeeze:**  
   Once the message is fully absorbed, the digest is “squeezed” out from the state.

> **Important:** Always use a trusted cryptographic library. Do not attempt to implement SHA-3 yourself.

---

## Communication Flow Example

```text
Bob                        Alice                        Eve
---                        -----                        ---
File F
  | -- Compute SHA3-256 --> Digest H
  |   (Alice computes SHA3-256 of File F)
  V
If digest matches → File integrity confirmed
```

If Eve modifies file F, the hash will change and Alice will detect the tampering.

---

## Variants and Parameters

- **SHA3-224:** Produces a 224-bit digest.
- **SHA3-256:** Produces a 256-bit digest (most common).
- **SHA3-384:** Produces a 384-bit digest.
- **SHA3-512:** Produces a 512-bit digest.

Additionally, there are extendable-output functions (XOFs):
- **SHAKE128**
- **SHAKE256**

---

## Security Notes

- **Strong Security:**  
  No practical attacks are known as of 2025.
  
- **Independent Design:**  
  SHA-3’s sponge construction is a fundamentally different design compared to SHA-2.
  
- **Safe Choice:**  
  Both SHA-2 and SHA-3 are secure for most applications; SHA3-256, in particular, is a solid choice for modern systems.

---

## Applications

- **Cryptocurrencies:**  
  Some altcoins utilize SHA-3 for hashing such as Ethereum 2.0.

- **Digital Signatures:**  
  SHA-3 can be used as the hash function in signature schemes.
  
- **Integrity Checking:**  
  Commonly employed for verifying data integrity in various applications.

In [1]:
import hashlib

# --- SHA3-256 ---
msg = b"hello world"
digest = hashlib.sha3_256(msg).hexdigest()

print("Message:", msg)
print("SHA3-256 digest:", digest)

# --- SHA3-512 ---
digest2 = hashlib.sha3_512(msg).hexdigest()
print("SHA3-512 digest:", digest2)

# --- Same input -> same digest ---
print("Repeat same?:", hashlib.sha3_256(msg).hexdigest() == digest)

# --- Different input ---
msg2 = b"hello World"
digest3 = hashlib.sha3_256(msg2).hexdigest()
print("Different digest:", digest3)


Message: b'hello world'
SHA3-256 digest: 644bcc7e564373040999aac89e7622f3ca71fba1d972fd94a31c3bfbf24e3938
SHA3-512 digest: 840006653e9ac9e95117a15c915caab81662918e925de9e004f774ff82d7079a40d4d27b1b372657c61d46d470304c88c788b3a4527ad074d1dccbee5dbaa99a
Repeat same?: True
Different digest: 246af90ac1e355e7f05a97826d8837379b2e4e742cc9c0bb7a1b9373ac6d12a1
