[Lug] SHA1 - Verschlüsselung wurde mathematisch unbrauchbar gemacht
Christoph Lampert
chl at math.uni-bonn.de
Mi Feb 16 23:38:13 CET 2005
Hallo Christian,
was heisst denn bitteschoen "mathematisch unbrauchbar"?
Gruss,
Christoph
On Wed, 16 Feb 2005, Christian Holl?nder wrote:
> Hallo!
>
> "http://www.schneier.com/blog/archives/2005/02/sha1_broken.html"
>
> --- snipp ---
> SHA-1 Broken
>
>
> SHA-1 has been broken. Not a reduced-round version. Not a simplified version.
> The real thing.
>
>
> The research team of Xiaoyun Wang, Yiqun Lisa Yin, and Hongbo Yu (mostly from
> Shandong University in China) have been quietly circulating a paper
> describing their results:
>
> collisions in the the full SHA-1 in 2**69 hash operations, much less than the
> brute-force attack of 2**80 operations based on the hash length.
>
> collisions in SHA-0 in 2**39 operations.
>
> collisions in 58-round SHA-1 in 2**33 operations.
>
> This attack builds on previous attacks on SHA-0 and SHA-1, and is a major,
> major cryptanalytic result. It pretty much puts a bullet into SHA-1 as a hash
> function for digital signatures (although it doesn't affect applications such
> as HMAC where collisions aren't important).
>
>
> The paper isn't generally available yet. At this point I can't tell if the
> attack is real, but the paper looks good and this is a reputable research
> team.
>
>
> More details when I have them.
>
> ---- snapp ----
>
>
>
>
> _______________________________________________
> Lug mailing list
> Lug at unix-ag.uni-kl.de
> http://lists.unix-ag.uni-kl.de/mailman/listinfo/lug
>