www. O S N E W S .com
News Features Interviews
BlogContact Editorials

Cryptographers show collision in SHA-1 algorithm
By special contributor Alfman on 2017-03-01 08:30:04

From the EFF:

On February 23rd, a joint team from the CWI Amsterdam and Google announced that they had generated the first ever collision in the SHA-1 cryptographic hashing algorithm. SHA-1 has long been considered theoretically insecure by cryptanalysts due to weaknesses in the algorithm design, but this marks the first time researchers were actually able to demonstrate a real-world example of the insecurity. In addition to being a powerful Proof of Concept (POC), the computing power that went into generating the proof was notable.

So what's the big deal?

Unfortunately, the migration away from SHA-1 has not been universal. Some programs, such as the version control system Git, have SHA-1 hard-baked into its code. This makes it difficult for projects which rely on Git to ditch the algorithm altogether. The encrypted e-mail system PGP also relies on it in certain places.

11  Comments - Printer friendly - Related stories
Recent related stories
- How smart TVs track more than what's on tonight - 2018-07-10
- "Gmail app developers have been reading your emails" - 2018-07-03
- Wi-Fi Alliance introduces WPA3 security - 2018-06-26
- Verizon and AT&T will stop selling your phone's location - 2018-06-20
- Apple just took a shot at Facebook's web-tracking empire - 2018-06-05
- More related articles
 

Tell a friend
Your full name:
Your email address:
Your friend's email:
Anti-spam measure:
5+2=

News Features Interviews
BlogContact Editorials


WAP site - RSS feed
© OSNews LLC 1997-2007. All Rights Reserved.
The readers' comments are owned and a responsibility of whoever posted them.
Prefer the desktop version of OSNews?