[16967] in cryptography@c2.net mail archive
RE: SHA-1 results available
daemon@ATHENA.MIT.EDU (Whyte, William)
Thu Mar 3 14:31:30 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
From: "Whyte, William" <WWhyte@ntru.com>
To: Jack Lloyd <lloyd@randombit.net>, cryptography@metzdowd.com,
cypherpunks@al-qaeda.net
Date: Tue, 22 Feb 2005 12:30:22 -0500
> http://theory.csail.mit.edu/~yiqun/shanote.pdf
>
> No real details, just collisions for 80 round SHA-0 (which I
> just confirmed)
> and 58 round SHA-1 (which I haven't bothered with), plus the
> now famous work
> factor estimate of 2^69 for full SHA-1.
>
> As usual, "Technical details will be provided in a
> forthcoming paper." I'm not
> holding my breath.
A preprint was circulating at the RSA conference; Adi Shamir
had a copy. Similar techniques were used by Vincent Rijmen
and Elizabeth Oswald, in their paper available at
.http://eprint.iacr.org/2005/010.
William
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
