PHK's MD5 might not be slow enough anymore
Xin LI
delphij at delphij.net
Thu Jan 28 19:56:28 UTC 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi, Chris,
On 2010/01/28 10:24, Chris Palmer wrote:
> See your copy of /usr/src/lib/libcrypt/crypt-md5.c:
I'd appreciate your effort put into this but I feel necessary to say
something on this topic.
The slowness was useful at the time when the code was written, but I
don't think it would buy us as much nowadays, expect the slowness be
halved from time to time, not to mention the use of distributed
techniques to accelerate the build of dictionaries.
Second, recent research has shown MD5 to be vulnerable to collision
attacks [1] by the end of 2008.
It's time to switch to some better algorithm, maybe something like
Skein, etc...
[1] http://www.kb.cert.org/vuls/id/836068
- --
Xin LI <delphij at delphij.net> http://www.delphij.net/
FreeBSD - The Power to Serve! Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (FreeBSD)
iQEcBAEBAgAGBQJLYeveAAoJEATO+BI/yjfBWzkH/icNHpEr5w/ulBlKe/fr/4Uo
+ZrGj7SixbL4g6yLPd79JKoJpFZEdMlY9AnLTr3QT0/OwKyySwVXg7Fh+7LA3r+4
DqE4N2pZfIqD6maS7ccF6Yp+2JAN9BJG7O73W6fEhm0mRTPkdLWMnB1gMx6DymQh
NQvx41QADmiN3jq6DapFJhQRDwFcxFzCsyg3eZ0nIwaCP+72HBPCEKEPro1JtLSF
sm0uf0TIyaGTgMe4xcjtwdlRtMmNA0V5yZwGHOcW09cuxxt3n79BA2RrPVz/+6Tr
KIa6LhNzoF1Eb4wfCSrSu2c4a6nM6+FSGT5fdpx/jkfr125W7sQYZuEVNzPWuxU=
=LuLY
-----END PGP SIGNATURE-----
More information about the freebsd-security
mailing list