Lab Notes

Musings on Wi-Fi security issues, our product plans, and the general state of the world. Follow up with your comments and complaints to Lab Notes's .

Better Attacks Against SHA-1

Back in February, a Chinese research team reported a practical attack on SHA-1, a significant breakthrough showing weaknesses in the most common internet security protocols (including TLS, the basis for WPA Enterprise security). At this week's Crypto conference, the researchers showed some new improvements in their attack: prior to the February announcement, the best attack was brute force, which took (on average) 280 steps. In February, that was reduced to 269 steps (each time you knock off a power of 2, the attack is twice as easy). Now, they are reporting they can do it in 264 steps — well within the realm of the practical. Expect there to be a lot of work on crypto protocols in the coming months to come up with replacements for SHA-1
By Periodik Labs on August 19, 2005 9:56 AM |

Search

Recent Entries

Mac OS X 10.5.1
Elektron and Leopard
Elektron 2.0.1755
AirPort Base Station Update 2007-002
AirPort Extreme Update 2007-004
New Elektron Release: 2.0.1744
PARC: Wi-Fi PKI Usability Stinks
A Real iPhone Exploit?
Duke: iPhones Don't Actually Attack
When iPhones Attack

Monthly Archives

November 2007 (1)
October 2007 (1)
September 2007 (1)
August 2007 (1)
July 2007 (8)
June 2007 (16)
November 2005 (8)
October 2005 (13)
September 2005 (22)
August 2005 (23)
July 2005 (21)
June 2005 (26)
May 2005 (23)
April 2005 (23)
March 2005 (25)
February 2005 (23)
January 2005 (29)
December 2004 (32)
November 2004 (32)





Subscribe to Lab Notes