LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for February 9, 2012

XBMC 11 "Eden"

LWN.net Weekly Edition for February 2, 2012

A tempest in a toybox

LWN.net Weekly Edition for January 26, 2012

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

may not be as bad as it appears

may not be as bad as it appears

Posted Aug 19, 2004 7:24 UTC (Thu) by ekj (subscriber, #1524)
In reply to: may not be as bad as it appears by ajax
Parent article: Crypto researchers abuzz over flaws (News.com)

That is not nessecarily so.

It depends on the details of the flaw. If the attack depends on custom-crafting the entire input, or worse yet, both inputs, to find a collision, then you are correct.

But it's possible to change only 20 bytes in a file and make the sha1sum equal. That little "garbage" could easily fit in say a comment in C code or an unused static variable in a binary program. The trick is, offcourse, how to select those 20 bytes.

With a good (as in cryptographically strong) hash there's no better way to do that than simply randomly try different garbage-strings until you find one that matches. That is impractical for a hash of sufficient size.

With a broken hash, all bets are off. It depends on the details.

(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds