ietf-openpgp
[Top] [All Lists]

Re: SHA-1 broken

2005-02-18 05:27:13

On Fri, 2005-02-18 at 13:02 +0100, Werner Koch wrote:
We should however not kick out SHA-1 from all places where it is now
used and replace it by SHA-256 before we understand the new attack.

Hmm, maybe this is stupid and it is definetely more effort
computationally, but what about using several hashing methods
simultaneously, mandating that all hashes have to check out?

regards

-- 
Ingo


<Prev in Thread] Current Thread [Next in Thread>