[110361] in North American Network Operators' Group
Re: Security team successfully cracks SSL using 200 PS3's and
daemon@ATHENA.MIT.EDU (Hank Nussbacher)
Sun Jan 4 02:22:38 2009
Date: Sun, 04 Jan 2009 09:22:06 +0200
To: Mikael Abrahamsson <swmike@swm.pp.se>, "nanog@nanog.org" <nanog@nanog.org>
From: Hank Nussbacher <hank@efes.iucc.ac.il>
In-Reply-To: <alpine.DEB.1.10.0901031842510.4588@uplift.swm.pp.se>
Errors-To: nanog-bounces@nanog.org
At 06:44 PM 03-01-09 +0100, Mikael Abrahamsson wrote:
>On Sat, 3 Jan 2009, Hank Nussbacher wrote:
>
>>You mean like for BGP neighbors? Wanna suggest an alternative? :-)
>
>Well, most likely MD5 is better than the alterantive today which is to run
>no authentication/encryption at all.
>
>But we should push whoever is developing these standards to go for SHA-1
>or equivalent instead of MD5 in the longer term.
Who is working on this? I don't find anything here:
http://www.ietf.org/html.charters/idr-charter.html
All I can find is:
http://www.ietf.org/rfc/rfc2385.txt
http://www.ietf.org/rfc/rfc3562.txt
http://www.ietf.org/rfc/rfc4278.txt
Nothing on replacing MD5 for BGP.
-Hank
