Re: Reference for SHA-1 being broken

Thanks, I agree this would be a better reference.

Hal, Cynthia, others?

regards, Frederick

Frederick Hirsch
Nokia



On Jan 13, 2010, at 11:48 AM, ext Peter Saint-Andre wrote:

> Instead of linking to for-pay content, I still think it would be  
> appropriate
> to reference RFC 4270 <http://tools.ietf.org/html/rfc4270>
>
>
> On 1/13/10 8:26 AM, "Frederick Hirsch" <Frederick.Hirsch@nokia.com>  
> wrote:
>
>> thanks, I'll add this to the reference unless anyone objects.
>>
>> regards, Frederick
>>
>> Frederick Hirsch
>> Nokia
>>
>>
>>
>> On Jan 13, 2010, at 10:19 AM, ext Harold Lockhart wrote:
>>
>>> Here is a link, but you have to pay to get more than the abstract.
>>>
>>> http://www.springerlink.com/content/26vljj3xhc28ux5m/
>>>
>>> Hal
>>>
>>>> -----Original Message-----
>>>> From: Frederick Hirsch [mailto:frederick.hirsch@nokia.com]
>>>> Sent: Tuesday, January 12, 2010 3:58 PM
>>>> To: Harold Lockhart
>>>> Cc: Frederick Hirsch; public-xmlsec@w3.org
>>>> Subject: Re: Reference for SHA-1 being broken
>>>>
>>>>
>>>> thanks. Is there a URL?
>>>>
>>>> regards, Frederick
>>>>
>>>> Frederick Hirsch
>>>> Nokia
>>>>
>>>>
>>>>
>>>> On Jan 12, 2010, at 3:45 PM, ext Harold Lockhart wrote:
>>>>
>>>>> Well Wang's team has published a bunch of papers in 2005 and their
>>>>> initial results merely weakened SHA-1, while completely breaking
>>>>> MD-5. However this seems to be the paper which convinced everybody
>>>>> that SHA-1 had to be phased out in fairly short order:
>>>>>
>>>>>
>>>>> Wang, X., Yin, Y.L., Yu, H.: Finding Collisions in the Full SHA-1.
>>>>> In Shoup, V., editor, Advances in Cryptology - CRYPTO 2005,
>>>>> 25th Annual International Cryptology Conference, Santa Barbara,
>>>>> California, USA,
>>>>> August 14-18, 2005, Proceedings, volume 3621 of LNCS, pages 17–36.
>>>>> Springer, 2005.
>>>>>
>>>>>
>>>>> Hal
>>>>>
>>>>
>>>>
>>>>
>>
>>
>

Received on Wednesday, 13 January 2010 16:58:25 UTC