Security Basics mailing list archives

Re: sha-1 cryptography

From: Marcos Marado <marado () isp novis pt>
Date: Thu, 22 Dec 2005 10:23:41 +0000

On Tue, 2005-12-20 at 18:37 +0000, Enquiries wrote:

Dear All

I understand that SHa-1 cryptography has been broken by the same person who
broke MD5, xiaoyun Wang.  So what does that mean for password security and
credit card transactions etc.  Does that mean we will need to look for other
stronger cryptography solutions and if yes what do you recommend, especially
for passwords?


There's ntghing much to look after: SHA-1 has been broken, but not
SHA-2.

-- 
Marcos Marado <marado () isp novis pt>
Sonaecom ISP
$ perl
''=~('(?{'.('^)@@*@'^'.[).^`').'"'.('`@@?@~//[*;)@`//)@|'^'-).[`<@@(^^[`.@@[)^').',$/})')
^Z

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

sha-1 cryptography Enquiries (Dec 21)
- Re: sha-1 cryptography Marcos Marado (Dec 26)
- RE: sha-1 cryptography David Gillett (Dec 26)
- Re: sha-1 cryptography Bennett Todd (Dec 26)
- Re: sha-1 cryptography Saqib Ali (Dec 26)
- <Possible follow-ups>
- RE: sha-1 cryptography Zachary Richmond (Dec 26)