Mailinglist Archive: opensuse-security (256 mails)

< Previous Next >
Re: [suse-security] SHA-1 broken - impact on SuSE linux versions
  • From: Malte Gell <malte.gell@xxxxxx>
  • Date: Sun, 20 Feb 2005 22:00:21 +0100
  • Message-id: <200502202200.22147.malte.gell@xxxxxx>
On Sunday 20 February 2005 11:37, Kai Schaetzl wrote:
> Polarizer wrote on Wed, 16 Feb 2005 13:31:49 +0100:
> > Broken is broken
>
> It's not broken.

It IS broken, because the effort of finding a collision now is below the
effort of using brute force, 2^64 vs 2^80. The same applies to a
cipher, if the effort to find a key is below brute force it is broken,
it's that simple. How feasible a real world attack is, is something
different, but for a cryptographer SHA-1 is broken.

Malte

< Previous Next >