Re: SHA-1 broken

ietf-openpgp

Re: SHA-1 broken

2005-02-17 02:36:22


* Konrad Rosenbaum wrote:

While this attack reduces SHA-1 from strength 2^80 to 2^69 and 2^69
operations is still unreachably much, likelihood seems high that someone
will improve this attack once the paper has been released.

Should we phase out SHA-1? But in favour of what?


Don't panic. This problem is already solved by allowing different
hash-algorithms in the packet format. As long as no detailed examination of
other algorithms is available, OpenPGP should not change MAYs and MUSTs.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
SHA-1 broken, Konrad Rosenbaum Re: SHA-1 broken, Lutz Donnerhacke <= Re: SHA-1 broken, Werner Koch Re: SHA-1 broken, Ian G Re: SHA-1 broken, David Shaw Re: SHA-1 broken, Ian G Re: SHA-1 broken, David Shaw Re: SHA-1 broken, Werner Koch Re: SHA-1 broken, Ian G Re: SHA-1 broken, David Shaw Re: SHA-1 broken, Konrad Rosenbaum Re: SHA-1 broken, Konrad Rosenbaum

Previous by Date:	Re: Timestamp and 3rd party sig, Werner Koch
Next by Date:	Re: SHA-1 broken, Werner Koch
Previous by Thread:	SHA-1 broken, Konrad Rosenbaum
Next by Thread:	Re: SHA-1 broken, Werner Koch
Indexes:	[Date] [Thread] [Top] [All Lists]