Re: Hash functions and streaming

From: Volker Birk (bumens_at_dingens.org)
Date: 10/30/05 

Date: 30 Oct 2005 15:01:07 +0200

frank <francis.moore@gmail.com> wrote:
> I have just heard (although apparently it's old news) that the SHA-1
> algorithm
> has been fundamentally broken.

Yes. You could use RIPEMD-160 instead, or use a well known block cipher
in CBC mode and use the last block of it as a hash.

> I don't really understand what problem is caused by someone finding a
> collision.

Trying to be short:

The security of hash functions consists of preventing attackers from being
able to provoke collisions.

If attackers can do this, then there is no security left at all with a hash
function.

Yours,
VB. 

-- 
"Ich bin ein freier Mensch und werde jetzt von meinen Freiheitsrechten
Gebrauch machen - und zwar ausgiebig - natürlich nur in dem Rahmen, den
Otto Schily mir noch zur Verfügung stellt."
                   Wolfgang Clement am 10.10.05 als Noch-Superminister

Relevant Pages

  • Re: Size of a new hash standard
    ... Hash: SHA1 ... > and secure message digest. ... > the digest is secure if the cipher is secure. ... strength of further block cipher does not prevent collisions. ...
    (sci.crypt)
  • Re: New hash contest by NIST, similair to AES competition
    ... Technically, Whirlpool is a block cipher, derived from ... And so are other hash functions. ... by modern standards, for a hash function. ... Related keys are seldom ...
    (sci.crypt)
  • Re: One-to-one Hash functions
    ... none of today's popular hash functions is designed to ... the output blocks, where B is ... form a permutation of the ... any common block cipher like DES or Rijndael. ...
    (sci.crypt)
  • Re: block cypher from a hash function?
    ... Use the hash to generate a pseudo-random number string, ... You don't need to reverse the algorithm. ... Bruce also documents another block cipher that's constructed ...
    (sci.crypt)