[193813] in North American Network Operators' Group
Re: SHA1 collisions proven possisble
daemon@ATHENA.MIT.EDU (Vincent Bernat)
Fri Feb 24 12:08:01 2017
X-Original-To: nanog@nanog.org
From: Vincent Bernat <bernat@luffy.cx>
To: NANOG list <nanog@nanog.org>
Date: Fri, 24 Feb 2017 18:04:07 +0100
In-Reply-To: <D8E57720-932F-49F8-B676-CEE074D34A80@ianai.net> (Patrick
W. Gilmore's message of "Thu, 23 Feb 2017 21:16:12 -0500")
Errors-To: nanog-bounces@nanog.org
=E2=9D=A6 23 f=C3=A9vrier 2017 21:16 -0500, "Patrick W. Gilmore" <patrick@=
ianai.net>=C2=A0:
> A couple things will make this slightly less useful for the attacker:
> 1) How many people are not going to keep a copy? Once both docs are be
> found to have the same hash, well, game over.
But if a transaction is automated, it may be too late. For example, if
the document is a bank transfer slip.
--=20
"You have been in Afghanistan, I perceive."
-- Sir Arthur Conan Doyle, "A Study in Scarlet"
