RE: [fw-wiz] MD5 x SHA-1

From: Brian A Kee (bkee@lurhq.com)
Date: 12/06/02

• Next message: Bill Royds: "RE: [fw-wiz] MD5 x SHA-1"
• Previous message: John Adams: "Re: [fw-wiz] MD5 x SHA-1"
• In reply to: Roberto Joćo Lopes Garcia: "[fw-wiz] MD5 x SHA-1"
• Next in thread: Bill Royds: "RE: [fw-wiz] MD5 x SHA-1"
• Reply: Bill Royds: "RE: [fw-wiz] MD5 x SHA-1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Brian A Kee" <bkee@lurhq.com>
To: <firewall-wizards@honor.icsalabs.com>
Date: Fri Dec  6 19:35:01 2002

In my experience better is relative.

I will assume that you are meaning which is more secure.

Everything that I have read states that SHA-1 is the more secure hashing
algorythm. They also state that there is a performance cost associated with
this algorythm compared to MD5.

I have never really taken the time actually test what the performance cost
difference is, nor whether or not the algorythm is actually more secure.

This information can be found in various textbooks including Applied
Crytpography. I beleive that this is referenced in many vendor IPSEC
configurration guides.

In my experience, both seem to be as good an the other. I have configured
many a VPN where I have chosen either algorythm. I have been equally happy
with both applications.

TM

-----Original Message-----
From: firewall-wizards-admin@honor.icsalabs.com
[mailto:firewall-wizards-admin@honor.icsalabs.com]On Behalf Of Roberto
Joao Lopes Garcia
Sent: Friday, December 06, 2002 12:06 PM
To: firewall-wizards@honor.icsalabs.com
Subject: [fw-wiz] MD5 x SHA-1

Hi

I need to know which is better as a file hash, that is, to see if a file
was modified

MD5 or SHA-1

Can some one, please, point me to some information

Thank you

Roberto

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Next message: Bill Royds: "RE: [fw-wiz] MD5 x SHA-1"
• Previous message: John Adams: "Re: [fw-wiz] MD5 x SHA-1"
• In reply to: Roberto Joćo Lopes Garcia: "[fw-wiz] MD5 x SHA-1"
• Next in thread: Bill Royds: "RE: [fw-wiz] MD5 x SHA-1"
• Reply: Bill Royds: "RE: [fw-wiz] MD5 x SHA-1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: SHA-1 Variants ... AES is simpler than DES but more secure [from ... These multipermutation is still enhance the original SHA-1. ... What the f'ing f!@# do you think a wide-trail design is? ... (sci.crypt) Re: Schneiers "Helix" cipher is remarkably similar to the "generic feistel cipher&qu ... > a Feistel Cipher, ... >> Your general form is not secure in general, ... There is more to SHA-1 than your form, ... you're scheme of May 25 2001 was trivially insecure. ... (sci.crypt) Re: SHA-1 Variants ... You said yourself SHA-1 is secure. ... These multipermutation is still enhance the original SHA-1. ... yields output difference Y, then Y into the subsequent round yields Z, ... I do have claims of security. ... (sci.crypt) Is this algorythm secure...? ... I've developed a symmetric algorythm to encrypt/decrypt data. ... Pentium SSE2 instructions. ... Maybe with some minor changes it can be more secure. ... (sci.crypt) Re: SHA-1 Variants ... > a construction that is based on certain primitives. ... you better use it in a way that has been proven to be secure. ... (But 'standing still' with SHA-1 ... (sci.crypt)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint