Polynomial hashing over prime order fields

. This paper makes a comprehensive study of two important strategies for polynomial hashing over a prime order field Fp, namely usual polynomial based hashing and hashing based on Bernstein-Rabin-Winograd (BRW) polynomials, and the various ways to combine them. Several hash functions are proposed and upper bounds on their differential probabilities are derived. Concrete instantiations are provided for the primes p = 2127 - 1 and p = 2130 - 5. A major contribution of the paper is an extensive 64-bit implementation of all the proposed hash functions in assembly targeted at modern Intel processors. The timing results suggest that using the prime 2127 - 1 is significantly faster than using the prime 2130 -5. Further, a judicious mix of the usual polynomial based hashing and BRW-polynomial based hashing can provide a significantly faster alternative to only usual polynomial based hashing. In particular, the timing results of our implementations show that our final hash function proposal for the prime 2127 - 1 is much faster than the well known Poly1305 hash function defined over the prime 2130 - 5, achieving speed improvements of up to 40%.