Skip to content

Tag Archives: SHA-1

SHA-1 vulnerable : consider SHA-2

Not long after md5, the computation progress has made another victim. Last week, it was made public that the SHA-1 hash function should be now considered vulnerable. The discovery bring up that the computation to create a collision hash has been dramaticaly reduced. As a consequence, the SHA-1 function can’t warranty anymore the uniquity – [...]

Posted 10 May 2009 § Cryptography § Security Comments (0) ° Also tagged: , , , , , ,

MD5 in your SSL certificate ? No need to panic !

MD5 was found vulnerable a few years ago. Recently, a team succeeded in producing a fake CA SSL certificate. MD5 or SHA-1 is the algorithm used to authenticate the peer in SSL messages. If it gets compromised, and using various combined technics, it becomes possible to do a MiM attack. But too much noise has [...]

Posted 02 January 2009 § Cryptography § Hacking § Security Comments (1) ° Also tagged: , ,