W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > July to September 1996

Alan Freier on Secure Hashes (MD5, SHA)

From: Jim Whitehead <ejw@ics.uci.edu>
Date: Mon, 23 Sep 1996 19:02:34 -0400
Message-Id: <ae6cab240b02100482fc@[]>
To: w3c-dist-auth@w3.org

Alan Freier <freier@netscape.com> writes:
>> >As for a suitable replacement, SHA (aka, SHA-1) seems to be the likely
>> >candidate. There is also a hash out of Europe that seems to have the
>> >right attributes (but alas, I can't remember the name).
>> >
>> Do you have a pointer to this?
>The "this" is ambiguious, so I'll through the kitchen sink in. Toss what
>you didn't want.
>The name of the hash I couldn't remember is RIPEMD-160. It's free,
>unencumbered, thought to be secure.
>[SHA] NIST FIPS Pub 180-1, "Secure Hash Standard", NIST, 17 April 1995,
>There's an attached .ps file, authored by Dobbertin.  He's the one that
>claims he will be breaking MD5 soon. Bruce Schneier (claims to be a
>personal friend of Dobbertin) is predicting early downfall of MD5.
>Others are predicting useful life given HMAC, etc. There seems to be
>some controvresy there and my suggestion would be to avoid that
>particular one.

I have made this Postscript file available at URL:


Thanks to Alan for these timely references.

- Jim
Received on Monday, 23 September 1996 19:21:21 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 20:01:08 UTC