Slashdot Mirror


SHA-1 Broken

Nanolith writes "From Bruce Schneier's weblog: 'SHA-1 has been broken. Not a reduced-round version. Not a simplified version. The real thing. The research team of Xiaoyun Wang, Yiqun Lisa Yin, and Hongbo Yu (mostly from Shandong University in China) have been quietly circulating a paper announcing their results...'" Note, though, that Schneier also writes "The paper isn't generally available yet. At this point I can't tell if the attack is real, but the paper looks good and this is a reputable research team."

6 of 751 comments (clear)

  1. Sigh by Anonymous Coward · · Score: 5, Funny

    And I just got done upgrading from MD5.

  2. Prison. by Seumas · · Score: 5, Funny

    A lot of companies and products use SHA1 in some form or another. Does this mean that we can arrest and imprison these "researchers" if they ever step foot in America?

  3. Re:Well... by all+your+mwbassguy+a · · Score: 5, Funny

    thank god ROT-13 will never be cracked.

  4. Re:Well... by flatface · · Score: 5, Funny

    That's nothing. ROT-26 offers the best encryption as of yet!

  5. Re:Well... by tonsofpcs · · Score: 5, Funny

    I can't read your post, it seems to be encrypted in that new ROT-26 scheme.

  6. Re:better yet-- by isometrick · · Score: 5, Funny

    7.5? 13? I'm guessing you aren't the one who broke SHA-1 ... :-p