W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > July to September 1996

Alan Freier on Secure Hashes (MD5, SHA)

From: Jim Whitehead <ejw@ics.uci.edu>
Date: Mon, 23 Sep 1996 19:02:34 -0400
Message-Id: <ae6cab240b02100482fc@[128.59.24.33]>
To: w3c-dist-auth@w3.org

Alan Freier <freier@netscape.com> writes:
>> >As for a suitable replacement, SHA (aka, SHA-1) seems to be the likely
>> >candidate. There is also a hash out of Europe that seems to have the
>> >right attributes (but alas, I can't remember the name).
>> >
>>
>> Do you have a pointer to this?
>
>The "this" is ambiguious, so I'll through the kitchen sink in. Toss what
>you didn't want.
>
>The name of the hash I couldn't remember is RIPEMD-160. It's free,
>unencumbered, thought to be secure.
>
>[SHA] NIST FIPS Pub 180-1, "Secure Hash Standard", NIST, 17 April 1995,
>http://csrc.ncsl.nist.gov/fips/fip180-1.ps
>
>There's an attached .ps file, authored by Dobbertin.  He's the one that
>claims he will be breaking MD5 soon. Bruce Schneier (claims to be a
>personal friend of Dobbertin) is predicting early downfall of MD5.
>Others are predicting useful life given HMAC, etc. There seems to be
>some controvresy there and my suggestion would be to avoid that
>particular one.

I have made this Postscript file available at URL:

http://www.ics.uci.edu/~ejw/authoring/dobbertin.ps

Thanks to Alan for these timely references.

- Jim
Received on Monday, 23 September 1996 19:21:21 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:43:41 GMT