>From: "Steven M. Bellovin" <[EMAIL PROTECTED]>
>Sent: Feb 15, 2005 11:29 PM
>To: cryptography@metzdowd.com
>Subject: SHA-1 cracked

>According to Bruce Schneier's blog 
>(http://www.schneier.com/blog/archives/2005/02/sha1_broken.html), a 
>team has found collisions in full SHA-1.  It's probably not a practical 
>threat today, since it takes 2^69 operations to do it and we haven't 
>heard claims that NSA et al. have built massively parallel hash 
>function collision finders, but it's an impressive achievement 
>nevertheless -- especially since it comes just a week after NIST stated 
>that there were no successful attacks on SHA-1.

Well, there *weren't* any a week ago....

>               --Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb

--John Kelsey


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]

Reply via email to