[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: quick survey on MD5 & SHA-1

To: ipsec@TIS.COM, rja@cisco.com
Subject: Re: quick survey on MD5 & SHA-1
From: touch@isi.edu
Date: Fri, 17 May 1996 15:15:31 -0700
MMDF-Warning: Parse error in original version of preceding line at neptune.TIS.COM
Posted-Date: Fri, 17 May 1996 15:15:31 -0700
Sender: ipsec-approval@neptune.tis.com

> From ipsec-request@neptune.tis.com Thu May 16 21:15:22 1996
> Date: Thu, 16 May 1996 19:58:52 -0700
> From: Ran Atkinson <rja@cisco.com>
> To: ipsec@tis.com
> Subject: quick survey on MD5 & SHA-1
> 
> 
> I'm trying to figure out where folks stand on the matter of which
> cryptographic hash function the IPsec WG should be using as its
> default, mandatory-to-implement function.
...
> The paper from the German Information Security Agency indicated a partial
> cryptanalysis, not a full cryptanalysis, of ordinary MD5.  Reportedly,
> that work does not apply to the HMAC technique of using MD5.  So there
> is no known cryptanalysis of MD5 at present, though probably less confidence
> in MD5 than before.

If the HMAC isn't compromised by this attack, the proposed spec should
not be changed.  Strength is going to be relative anyway, and chasing
the 'strongest MAC at the time of publication' seems like a fleeting
goal.  The only gain of such a change would appear to be to delay the
demonstration implementations.

Joe
----------------------------------------------------------------------
Joe Touch - touch@isi.edu		    http://www.isi.edu/~touch/
ISI / Project Leader, ATOMIC-2, LSAM       http://www.isi.edu/atomic2/
USC / Research Assistant Prof.                http://www.isi.edu/lsam/

Prev by Date: Re: Re[2]: quick survey
Next by Date: Yes, you can export SHA and MD5
Prev by thread: quick survey on MD5 & SHA-1
Next by thread: AH-SHA implementation
Index(es):
- Main
- Thread