Re: Re: SRS and the 64 char limit

spf-discuss

Re: Re: SRS and the 64 char limit

2004-02-17 07:46:33

On Tue, Feb 10, 2004 at 04:23:22PM -0800, Hallam-Baker, Phillip wrote:

Use SHA-1

The probability of collision between two given hashes is 2^160.


I thought it is more like the sqrt of this---2^80.

But I do not understand this discussion at all: since a timestamp is
also part of the scheme, and assuming no bounce older than a month is
accepted, is not md5 more than sufficient (collision probability is
2^64)?  Especially if several secrets are used.  Any site can easily
calculate the number of secrets needed: look at the maximum number of
emails the site can receive in one second (assuming the timestamp is
in seconds).

Mate

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Re: SRS and the 64 char limit, (continued) Re: Re: SRS and the 64 char limit, James Couzens Re: Re: SRS and the 64 char limit, mw-list-spf-discuss Re: Re: SRS and the 64 char limit, wayne Re: SRS and the 64 char limit, Lars Magne Ingebrigtsen Re: Re: SRS and the 64 char limit, wayne Re: Re: SRS and the 64 char limit, Meng Weng Wong Re: Re: SRS and the 64 char limit, wayne Re: Re: SRS and the 64 char limit, mw-list-spf-discuss Re: Re: SRS and the 64 char limit, Justin Mason Re: Re: SRS and the 64 char limit, Shevek Re: Re: SRS and the 64 char limit, mw-list-spf-discuss <= Re: Re: SRS and the 64 char limit, Brian Candler

Previous by Date:	Re: A couple of thoughts, Brian Candler
Next by Date:	SRS timestamp, Brian Candler
Previous by Thread:	Re: Re: SRS and the 64 char limit, Shevek
Next by Thread:	Re: Re: SRS and the 64 char limit, Brian Candler
Indexes:	[Date] [Thread] [Top] [All Lists]