[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: on a more serious note... do we want MD5?

To: perry@imsi.com
Subject: Re: on a more serious note... do we want MD5?
From: "Donald E. Eastlake 3rd (Beast)" <dee@skidrow.tay.dec.com>
Date: Thu, 26 Jan 95 10:28:58 -0500
Cc: ipsec@ans.net
In-Reply-To: Your message of "Wed, 25 Jan 95 19:18:56 EST." <9501260018.AA04504@webster.imsi.com>

I initially proposed SHA for DNS security but gotten beaten back on the
grouds that MD5 with the Internet way of doing it.  I still think that
SHA is better and believe that, sooner or later, there will be a transition
to it.

Donald

From:  perry@imsi.com (Perry E. Metzger)
To:  ipsec@ans.net
Reply-To:  perry@imsi.com
X-Reposting-Policy:  redistribute only with permission
>On a more serious note, as I stated in the security issues section of
>the MD5 draft, there has been some progress of late on the cracking of
>MD5. Its still rudimentary, but it has been made. Given that there are
>legitimate cryptographic concerns about MD5 itself, should we be
>looking at SHA (mark 2 :-) as the mandatory base transform rather than
>MD5?
>
>.pm

References:

on a more serious note... do we want MD5?

From: perry@imsi.com (Perry E. Metzger)

Prev by Date: Re: AH-MD5
Next by Date: Re: on a more serious note... do we want MD5?
Prev by thread: on a more serious note... do we want MD5?
Next by thread: Re: on a more serious note... do we want MD5?
Index(es):
- Main
- Thread