[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: SHA-1 collissions, etc
From the RSA blog at: http://www.rsasecurity.com/blog/entry.asp?id=1014
“RSA
Laboratories' Dr.
Michael Szydlo has posted a technical note
on the status of the researchers' latest attack and the practical ramifications
for applications in use today.” The
technical note states “It will not be
surprising if further improvements to SHA-1 collision attacks appear in the
coming months.” ------------------------------------ Status
of the Attack: Although it is clear that the
approach is viable, the improved message modification calculations have not
been confirmed by experts. As with the work of [WYY], this work estimates the
difficulty of an attack, rather than producing an actual collision. No actual
collision for SHA-1 has been exhibited to date. However 2^63 is within reach of
a distributed computing effort. It will not be surprising if further
improvements to SHA-1 collision attacks appear in the coming months. Practical
Ramifications: This research has ramifications for
applications which require collision resistant hash functions: for example
digital signatures (see [R] and [K] for a discussion of the ramifications of
earlier collision attacks on SHA-1). Practically, this cryptanalytic result
suggests the acceleration of upgrading software which uses hash functions.
Three viable approaches for improving the security of applications are:
------------------------------------ Rob Philpott |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]