[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SHA-1 broken

To: Lutz Donnerhacke <lutz@xxxxxxxxxxx>
Subject: Re: SHA-1 broken
From: Werner Koch <wk@xxxxxxxxx>
Date: Thu, 17 Feb 2005 11:39:41 +0100
Cc: ietf-openpgp@xxxxxxx
In-reply-to: <> (Lutz Donnerhacke's message of "Thu, 17 Feb 2005 09:36:08 +0000 (UTC)")
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Openpgp: id=5B0358A2; url=finger:wk@g10code.com
Organisation: g10 Code GmbH
References: <> <>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx
User-agent: Gnus/5.1007 (Gnus v5.10.7) Emacs/21.3 (gnu/linux)

On Thu, 17 Feb 2005 09:36:08 +0000 (UTC), Lutz Donnerhacke said:

> Don't panic. This problem is already solved by allowing different
> hash-algorithms in the packet format. As long as no detailed examination of

The fingerprint and the MDC both use SHA-1 hardwired.

We should really start thinking on how to switch to a different hash
algorithm.  The question is whether sha-256 is really that much more
secure.  From my understanding it has not been developed as a
replacement for SHA-1 but to meet the requirements of AES and to
extend DSA.


Salam-Shalom,

   Werner

Follow-Ups:
- Re: SHA-1 broken
  - From: Konrad Rosenbaum
- Re: SHA-1 broken
  - From: Ian G

References:
- SHA-1 broken
  - From: Konrad Rosenbaum
- Re: SHA-1 broken
  - From: Lutz Donnerhacke

Prev by Date: Re: SHA-1 broken
Next by Date: Re: SHA-1 broken
Previous by thread: Re: SHA-1 broken
Next by thread: Re: SHA-1 broken
Index(es):
- Date
- Thread