W3C home > Mailing lists > Public > public-xmlsec@w3.org > January 2010

Re: Reference for SHA-1 being broken

From: Frederick Hirsch <Frederick.Hirsch@nokia.com>
Date: Wed, 13 Jan 2010 10:26:24 -0500
Cc: Frederick Hirsch <Frederick.Hirsch@nokia.com>, "public-xmlsec@w3.org" <public-xmlsec@w3.org>
Message-Id: <E5149806-0072-4B2C-A4CD-FAA615F1695F@nokia.com>
To: ext Harold Lockhart <hal.lockhart@oracle.com>
thanks, I'll add this to the reference unless anyone objects.

regards, Frederick

Frederick Hirsch
Nokia



On Jan 13, 2010, at 10:19 AM, ext Harold Lockhart wrote:

> Here is a link, but you have to pay to get more than the abstract.
>
> http://www.springerlink.com/content/26vljj3xhc28ux5m/
>
> Hal
>
>> -----Original Message-----
>> From: Frederick Hirsch [mailto:frederick.hirsch@nokia.com]
>> Sent: Tuesday, January 12, 2010 3:58 PM
>> To: Harold Lockhart
>> Cc: Frederick Hirsch; public-xmlsec@w3.org
>> Subject: Re: Reference for SHA-1 being broken
>>
>>
>> thanks. Is there a URL?
>>
>> regards, Frederick
>>
>> Frederick Hirsch
>> Nokia
>>
>>
>>
>> On Jan 12, 2010, at 3:45 PM, ext Harold Lockhart wrote:
>>
>>> Well Wang's team has published a bunch of papers in 2005 and their
>>> initial results merely weakened SHA-1, while completely breaking
>>> MD-5. However this seems to be the paper which convinced everybody
>>> that SHA-1 had to be phased out in fairly short order:
>>>
>>>
>>> Wang, X., Yin, Y.L., Yu, H.: Finding Collisions in the Full SHA-1.
>>> In Shoup, V., editor, Advances in Cryptology - CRYPTO 2005,
>>> 25th Annual International Cryptology Conference, Santa Barbara,
>>> California, USA,
>>> August 14-18, 2005, Proceedings, volume 3621 of LNCS, pages 1736.
>>> Springer, 2005.
>>>
>>>
>>> Hal
>>>
>>
>>
>>
Received on Wednesday, 13 January 2010 15:27:27 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 13 January 2010 15:27:28 GMT