Re: Adding SHA-512 to the list of digests

To: tech-pkg <tech-pkg%netbsd.org@localhost>
Subject: Re: Adding SHA-512 to the list of digests
From: Hubert Feyrer <hubert%feyrer.de@localhost>
Date: Thu, 8 Oct 2015 22:32:04 +0200 (CEST)

On Thu, 8 Oct 2015, Taylor R Campbell wrote:

In the long run, I don't think we gain anything by continuing to use
SHA-1, but we ought to wait until ~everything has SHA-512 hashes
before we stop verifying the SHA-1 hashes -- otherwise it would expose
us to any problems in RMD160, which gets relatively little public
scrutiny.


FWIW, https://sites.google.com/site/itstheshappening/
describes SHA-1 collisions starting to get easier.

Better to start phasing out SHA-1 sooner than later.


 - Hubert

References:
- Re: Adding SHA-512 to the list of digests
  - From: Taylor R Campbell

Prev by Date: Re: Adding SHA-512 to the list of digests
Next by Date: Re: Adding SHA-512 to the list of digests
Previous by Thread: Re: Adding SHA-512 to the list of digests
Next by Thread: Re: Adding SHA-512 to the list of digests
Indexes:

Home | Main Index | Thread Index | Old Index