The news gets worse for SHA-1

| Comments (2) | TrackBacks (140) |
Bruce Schneier is reporting that the Wang, Yin, Yu team has reduced the difficulty of finding collisons in SHA-1 to 269 operations:
  • collisions in the the full SHA-1 in 2**69 hash operations, much less than the brute-force attack of 2**80 operations based on the hash length.
  • collisions in SHA-0 in 2**39 operations.
  • collisions in 58-round SHA-1 in 2**33 operations.

This is clearly pretty bad, but remember that in order to exploit a collision (as opposed to a second preimage) you need to generate the colliding pair in advance. So, even if we assume that you can build arbitrary collisions--which the previous work on MD5 didn't let you do---the attacker would need to expend that effort up front, before he cons you into signing one of the pair. It doesn't implicate signatures that have already been generated. See here for more details about the impact of this kind of attack.

140 TrackBacks

Listed below are links to blogs that reference this entry: The news gets worse for SHA-1.

TrackBack URL for this entry:

The draft paper on the Chinese team's exploits of message digests has now alleged that SHA-1 falls to the same cryptanalytic attack as that which broke the others. Over on Bruce Schneier's blog he reports presumably from the RSA conference.... Read More

beastiality from animal sex on May 18, 2005 11:05 PM

animal sex animal sex horse suck horse suck freebeast freebeast Read More

beastiality from animal sex on May 20, 2005 12:05 AM

animal porn animal porn horse sex horse sex freebeast freebeast Read More

beastiality from animal sex on May 21, 2005 3:26 AM

TITLE: beastiality URL: IP: BLOG NAME: animal sex DATE: 05/21/2005 03:26:17 AM Read More

Chee cha king of all fun and games is cool Read More

gay sexo boy from hot gayboys free movie pics on July 11, 2005 2:27 PM

free penis gay, boy with boy sex pics, porn gay gratuit clip hunter gay latin gay spank pics free t... Read More

texas holdem All religions, with their gods, their demi-gods, and their prophets, their messiahs and their saints, were created by the pre Read More

casino poker chips from casino poker chips on September 27, 2005 4:53 PM

casino poker chips But I did mean to teach geese Miss Thorwaldsen a lesson, cheese-making it was neither easily-prepared no Read More

The news gets worse fo... Read More

akon lonely Read More

moving companies from moving companies on October 27, 2005 12:10 AM

moving companies Read More

pill identification from pill identification on October 28, 2005 1:44 AM

pill identification Read More

Girls rape younger girls rape Free pictures of little girls naked and raped Fuking horse girl Animals getting fucked b... Read More

home equity loans from home equity loans on November 19, 2005 8:49 AM

cash advance,[prevkey], [currkey] is a niceblog. Read More

adult dating club from adult dating club on November 28, 2005 1:04 PM

adult dating club Read More

baseball betting from baseball betting on December 13, 2005 11:49 AM

TITLE: baseball betting URL: IP: BLOG NAME: baseball betting DATE: 12/13/2005 11:49:51 AM Read More

creditdebt Read More

Anal porn trailer from Porno vidoes mit trailer on December 17, 2005 10:32 PM

Mature indian women with small boys Gays video clip Rape free download film Free sex moms sons galleries... Read More

printers from printers blog on December 22, 2005 3:37 PM

TITLE: printers URL: IP: BLOG NAME: printers blog DATE: 12/22/2005 03:37:07 PM Read More

Watch arab girl porn Young boy teen gay Free bondage movies to download Rape video downloads for free Read More

TITLE: replica watches URL: IP: BLOG NAME: best replicas DATE: 12/24/2005 10:35:13 AM Read More

TITLE: pure hoodia URL: IP: BLOG NAME: hoodia DATE: 01/03/2006 06:05:21 PM Read More

jersey from jersey collection on January 10, 2006 2:52 AM

TITLE: jersey URL: IP: BLOG NAME: jersey collection DATE: 01/10/2006 02:52:53 AM Read More

premature cure from premature ejaculation cure on January 10, 2006 8:05 PM

TITLE: premature cure URL: IP: BLOG NAME: premature ejaculation cure DATE: 01/10/2006 08:05:22 PM Read More

kellybluebook Read More

Free MP3 downloads from Free MP3 downloads on February 8, 2006 11:29 PM

Free MP3 downloads Read More

poker casino450 from poker casino450 on February 9, 2006 10:31 AM

poker casino poker 425 Read More

futon covers memory foam mattress memory foam mattress memory foam mattress topper memory foam mattress t... Read More

blackjack video poker video poker party poker party poker Read More

party poker party poker online poker online poker Read More

north carolina furniture from north carolina furniture on February 25, 2006 3:15 AM

north carolina furniture desk desk tanning beds tanning beds Read More

TITLE: anorexia URL: IP: BLOG NAME: DATE: 02/26/2006 11:49:28 PM Read More

cheap cruises cheap first class airfare cheap first class airfare cheap trick cheap trick Read More


Well, *that* wasn't supposed to happen....

I really thought the added twist in the message schedule blocked the attacks. It sure looked like it did based on the SHA0 attacks that were published. I wish Wang & company would publish details of some of these attacks....


My favourite trackback on Schneier's blog was the one that said "Oh well, back to MD5..."

Leave a comment