Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



Chinese Prof Cracks SHA-1 Data Encryption Scheme

randombit Re:Old (416 comments)

Probably? I'll grant you that the output of SHA-512 is going to be longer than combining several small hashes, but I don't intuitively see that it's necessarily more secure.

See Joux's work on multicollision attacks. While it was thought (before he developed this attack) that taking a (secure) N-bit hash and a (secure) M-bit hash and concatenating the outputs was equivalent to a secure (N+M)-bit hash, it turns out this is not the case - it's more like a max(N,M)-bit hash, for (some) security purposes, such as collision resistance.

It's not intuitive, though - at least not until after you see the attack. We had been designing and using hashes based on the Miyaguchi-Preneel and Davies-Meyer methods for well over a decade before Joux noticed the problem.

more than 7 years ago


randombit hasn't submitted any stories.


randombit has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>