Should we settle on one SSL implementation?
Enrico Scholz
enrico.scholz at informatik.tu-chemnitz.de
Sat Oct 27 22:45:45 UTC 2007
Paul Wouters <paul at xelerance.com> writes:
> Also, it is believed that if SHA-1 is compromised, the attack would work
> similarly to SHA-256 et al.
Current SHA-1 attacks reduce "only" the numbers of steps to find a
collision (e.g. 2^60 instead of 2^80). Similar attacks for SHA-256/512
will probably require 2^90 / 2^180 steps which should be enough for the
next ten years...
Enrico
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 480 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20071028/aa7d3c80/attachment.sig>
More information about the fedora-devel-list
mailing list