| SHA-0 broken | <– Date –> <– Thread –> |
From: Thomas Otto (t.otto sharevolution.de)
|
|
| Date: Tue, 17 Aug 2004 07:07:37 -0400 (EDT) | |
Hi all, At Crypto 2004, Biham and Chen presented their attack on SHA-0. An introductory article from slashdot.org ([1]), entitled "SHA-0 Broken, MD5 Rumored Broken", and presentation slides ([2]) from the conference may provide some informations. Since many protocols make heavy use of MD5 and RIPEMD-128 and SHA-1 is very similar to SHA-0, this is possibly the beginning collapse of a big part of the Internet architecture. Now, two questions arise. First, is TLS affected by this vulnerability? This idea came in mind since the PRF relies on the abovementioned (semi-)broken cryptographic algorithms. PRF(secret, label, seed) = P_MD5(S1, label + seed) XOR P_SHA-1(S2, label + seed); Second, are EAP methods, that make use of TLS, subsequently be threatened? Your comments or ideas are highly appreciated Thomas References [1] http://slashdot.org/articles/04/08/17/0030243.shtml?tid=93&tid=162&tid=1&tid=218 [2] http://www.cs.technion.ac.il/~biham/Reports/Slides/invited-talk-sac-2004.ps.gz
-
SHA-0 broken Thomas Otto, August 17 2004
- Re: SHA-0 broken Jari Arkko, August 17 2004
- Re: SHA-0 broken Nicolas Williams, August 17 2004
-
Re: SHA-0 Broken Bernard Aboba, August 17 2004
- Re: Re: SHA-0 Broken Mohamad Badra, August 17 2004
Results generated by Tiger Technologies using MHonArc.