brainstorms

brainstorms

ozan (oz) yigit's noteblog at sun. all my text and photography is released under a cc attribution-noncommercial-noderivs license. all my poetry requires explicit permission.

Tuesday February 22, 2005

lenstra: all new designs should use SHA-256...

just ran into a new paper by arjen lenstra, now at bell labs: further progress in hashing cryptanalysis. abstract:

Until further notice, all new designs should use SHA-256. Existing systems using SHA1 or MD5 should confirm that they only need second pre-image resistance, not random collision resistance. Usage of MD5 in certificates should be discontinued unless the presence of adequate mitigating controls has been verified.

also includes a sketch of antonie joux's result about the concatenation of hash functions. mozart

[musical recommendation while reading about the future of sha-N where N is 224/256/384/512: Trio - Mozart: The Late Symphonies (etc) / Bernstein, Vienna Philharmonic, 3cd set, Deutsche Grammophon. these Trio editions are a remarkable and affordable gift to classical music lovers.]

[surprising that this paper was not slash-blotted, not that it matters anymore]

(2005-02-22 10:45:51.0) Permalink Comments [1]

Comments:

Bearing this in mind, it would be nice if the new BART tool in Solaris 10 as well as the Sun Fingerprint Database would stop using MD5 hashes of files for integrity verification.

Posted by Derek Morr on February 22, 2005 at 02:26 PM EST #

Name:

E-Mail:

URL:

Notify me by email of new comments

Remember Information?

Your Comment:

HTML Syntax: NOT allowed

« December 2009

Sun

Mon

Tue

Wed

Thu

Fri

Sat

Today

Links

brainstorms

Calendar

Search

RSS Feeds

Links

Recent Entries

Navigation

Referers