02/18/2005: "SHA1 Update"

Looks like SHA1 may not be quite dead after all. Reading a recent report this morning, it now appears that the attack may be more theoretical than practical. Read here (emphasis mine):

"Although the cracking technique could not be carried out practically, it does compromise the integrity of the algorithm and could lead to more advanced attacks that would render SHA-1 useless, affecting many Internet security products that use it to generate digital signatures, according to Bruce Schneier, founder and chief technology officer of Counterpane Internet Security."

Okay, so SHA1 may be vulnerable to attack, but it does not appear that we're going to see a massive Internet Worm that compromises it anytime soon. This may be the first nail in the coffin of SHA1, but it's not dead yet.

February 2005
S	M	T	W	T	F	S
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28

Navigation:

Home
Archives
About Me
Articles
Email
News Feed
Projects

My Blogroll:

Security Advisories:

Anti-Phishing
AUSCERT
BugBlog
CERIAS
CERT
CIAC
Cisco Advisories
F-Secure
iDefense
ISS XForce
McAfee
Windows Security
Oracle Alerts
Secunia
Security Corporation
Security Focus
Security Tracker
SGI Advisories
Sun Alerts
Symantec
Trend Micro
Zone-H

Defacements Archive:

Zone-H Digital Archive

Security News:

DShield
Help Net Security
Internet Storm Center
Linux Security
NewsNow: Encryption/Security
NewsNow: Hacking
Packet Storm
Securiteam
Security News Portal
Security Stats
Security Focus
Risks Digest
Zone-H

Security Tools:

Packet Storm
Astalavista
Help Net Security
Packet Factory
Security Focus