Tony Finch wrote:
> I have written a blog post with my understanding of the implications of
> the SHAmbles attack for DNSSEC.
>
> https://www.dns.cam.ac.uk/news/2020-01-09-sha-mbles.html
I've updated that with a correction about the SHA-1 input block size,
but that doesn't affect the overall
I have written a blog post with my understanding of the implications of the
SHAmbles attack for DNSSEC.
https://www.dns.cam.ac.uk/news/2020-01-09-sha-mbles.html
Conclusions from the article:
Whenever a DNS zone is signed with a SHA-1 DNSKEY algorithm it is vulnerable to
chosen prefix