MD5/SHA-1 slides

| Comments (4) | TrackBacks (6) |
I'll be talking about the status of MD5/SHA-1 at Thursday's IETF Open Security Area Meeting. Here are my slides. BTW, using LaTeX for slides is a lot less bad than I expected.

UPDATE 3/14/05: I've uploaded the slides I actually gave, incorporating some comments from Cyperpunk and Paul Hoffman.

6 TrackBacks

Listed below are links to blogs that reference this entry: MD5/SHA-1 slides.

TrackBack URL for this entry:

blitz pacific poker from blitz pacific poker on October 3, 2005 8:41 AM

You may find it interesting to take a look at the pages dedicated to pacific poker 10 free Read More

texas hold em poker table from texas hold em poker table on October 9, 2005 9:03 PM

You may find it interesting to check out the pages on on-line texas holdem poker Read More

Free brother fucked sister from Moms fuck sons pics and videos on November 11, 2005 7:18 AM

Indian girls rapes videos Stories of women getting raped Mother fuck porno Daddaughtergaysexfuckold Read More

texas hold em rules from texas hold em rules on December 21, 2005 11:11 AM

mockingbird reselling hitchhiker Islamize Romans.upgraded play poker online Read More


That looked good. You're missing a right parenthesis at the end of the HMAC definition. Also, the comment that finding a colliding HMAC is "doubly difficult because inner and outer prefixes are different" is not right; it is only necessary to find a collision using the inner prefix, and then it will automatically be a collision for the outer prefix, because the outer prefix is applied to the hash output from the inner hash, not the message itself.

Cypherpunk. Good catches. I plead lack of sleep for the "doubly difficult" error.

I heard today that the Wang MD5 paper is out, plus a paper by Klima with a potential speedup on her attack. See

There's a rather alarmist article on page 1 of today's Wall Street Journal on hash collisions. Looks like they haven't read ekr's slides.

Leave a comment