- From: Jim Whitehead <ejw@ics.uci.edu>
- Date: Mon, 23 Sep 1996 19:02:34 -0400
- To: w3c-dist-auth@w3.org
Alan Freier <freier@netscape.com> writes: >> >As for a suitable replacement, SHA (aka, SHA-1) seems to be the likely >> >candidate. There is also a hash out of Europe that seems to have the >> >right attributes (but alas, I can't remember the name). >> > >> >> Do you have a pointer to this? > >The "this" is ambiguious, so I'll through the kitchen sink in. Toss what >you didn't want. > >The name of the hash I couldn't remember is RIPEMD-160. It's free, >unencumbered, thought to be secure. > >[SHA] NIST FIPS Pub 180-1, "Secure Hash Standard", NIST, 17 April 1995, >http://csrc.ncsl.nist.gov/fips/fip180-1.ps > >There's an attached .ps file, authored by Dobbertin. He's the one that >claims he will be breaking MD5 soon. Bruce Schneier (claims to be a >personal friend of Dobbertin) is predicting early downfall of MD5. >Others are predicting useful life given HMAC, etc. There seems to be >some controvresy there and my suggestion would be to avoid that >particular one. I have made this Postscript file available at URL: http://www.ics.uci.edu/~ejw/authoring/dobbertin.ps Thanks to Alan for these timely references. - Jim
Received on Monday, 23 September 1996 19:21:21 UTC