[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SHA-1 broken

To: ietf-openpgp@xxxxxxx
Subject: SHA-1 broken
From: Konrad Rosenbaum <konrad@xxxxxxxxx>
Date: Thu, 17 Feb 2005 07:50:49 +0100
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx
User-agent: KMail/1.7.2

Hi,

http://www.schneier.com/blog/archives/2005/02/sha1_broken.html

While this attack reduces SHA-1 from strength 2^80 to 2^69 and 2^69 
operations is still unreachably much, likelihood seems high that someone 
will improve this attack once the paper has been released.

Should we phase out SHA-1? But in favour of what?

This also means that DSA/DSS is broken (a downgrade attack becomes 
possible). Should we return to suggesting RSA as signature algorithm?



	Konrad

Attachment: pgp00105.pgp
Description: PGP signature

Follow-Ups:
- Re: SHA-1 broken
  - From: Lutz Donnerhacke

Prev by Date: Timestamp and 3rd party sig
Next by Date: Re: Timestamp and 3rd party sig
Previous by thread: Timestamp and 3rd party sig
Next by thread: Re: SHA-1 broken
Index(es):
- Date
- Thread