3APA3A wrote:
> First, by reading 'crack' I thought lady can recover full message by
> it's signature. After careful reading she can bruteforce collisions 2000
> times faster.
Cracking a hash would never mean recovering the full original message,
except for possibly messages that were smaller than the number of bits
in the hash value. There are an infinite number of messages that all
hash to the same value.
The best crack you can have for a hash is to be able collide with an
existing hash value and be able to choose most of the message contents.
BB
_______________________________________________
Secure Coding mailing list (SC-L) SC-L@securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
_______________________________________________
