[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Should we settle on one SSL implementation?



On Wed, Oct 24, 2007 at 14:32:59 -0400,
  Bernardo Innocenti <bernie codewiz org> wrote:
> 
> Uh?  I wasn't aware SHA1 has been broken (at least, not in
> a practically exploitable way).

Schneier has written some blog entries related to sha1 and the process for
getting a new has standard.

http://www.schneier.com/blog/archives/2005/08/new_cryptanalyt.html
http://www.schneier.com/blog/archives/2005/10/nist_hash_works_2.html
http://www.schneier.com/blog/archives/2006/09/notes_from_the.html


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]