« Yes, Nalgene bottles do come in multiple sizes | Main | Heads-up: AT&T Billing Issues »
August 22, 2007
SHA-1 rumors
I'm not at CRYPTO but my sources tell me that there may have been some more progress on SHA-1 and that the latest estimates are on the order of 260.x. Anyone with more details please post them in the comments.Posted by ekr at August 22, 2007 6:36 AM | Filed under: COMSEC
Comments
I watched the webcast of the rump session, and Christian Rechberger said that they think they will get 2^60ish with a new technique. He did not describe the technique in any detail. Offline, he has told me that there will be papers published.
Posted by: Paul Hoffman at August 22, 2007 8:29 AM
I also talked to Christian, and I believe him. They've produced a 70-step collision already, and have done an amazing amount of work on developing these attacks. You can't know the outcome of an experiment until you run it, but I'm guessing we'll see a real SHA1 collision in the next year or so.
Posted by: John Kelsey at August 23, 2007 10:14 PM