[8948] in cryptography@c2.net mail archive
Re: Crypographically Strong Software Distribution HOWTO
daemon@ATHENA.MIT.EDU (Don Davis)
Mon Jul 2 22:13:55 2001
Message-Id: <l03110704b766d719500c@[208.192.101.91]>
In-Reply-To: <3B40F8CA.5BC3AFD5@storm.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Mon, 2 Jul 2001 22:06:23 -0400
To: Sandy Harris <sandy@storm.ca>
From: Don Davis <dtd@world.std.com>
Cc: cryptography@wasabisystems.com
>> Hans Dobbertin found some weaknesses in MD5 in 1996.
> Also note that RFC 2104 on the HMAC construction used in IPSEC
> explicitly cites Dobbertin and says the attack does not apply:
this is because dobbertin's attack works only
against message-digest applications of md5;
his attack doesn't work against md5 MACs, ie,
when md5 is used to hash a symmetric key with
the plaintext.
but, i generally tell clients to use sha-1 even
for MACs, just to avoid confusing their customers.
- don davis, boston
-
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
