From owner-freebsd-security@FreeBSD.ORG Thu Aug 19 23:11:30 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 53CEC16A4CE for ; Thu, 19 Aug 2004 23:11:30 +0000 (GMT) Received: from marx.hkr.ath.cx (203-173-45-72.dyn.iinet.net.au [203.173.45.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5B77D43D4C for ; Thu, 19 Aug 2004 23:11:27 +0000 (GMT) (envelope-from afx@pkl.net) Received: from darcia (unknown [192.168.1.47]) by marx.hkr.ath.cx (Postfix) with ESMTP id E0D563F4E; Fri, 20 Aug 2004 09:04:43 +1000 (EST) From: "George F. Costanzo" To: "'David Wolfskill'" Date: Fri, 20 Aug 2004 09:11:25 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.6353 In-Reply-To: <200408181724.i7IHORYl013375@bunrab.catwhisker.org> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Thread-Index: AcSFSEEgGnq7STcpS5qRGeCEHy7RCwA90t+g Message-Id: <20040819230443.E0D563F4E@marx.hkr.ath.cx> cc: freebsd-security@freebsd.org Subject: RE: Report of collision-generation with MD5 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Aug 2004 23:11:30 -0000 The reporter got mixed up. Antoine Joux published a SHA-0 collision, while the Chinese researchers, Xiaoyun Wang and co. put out the paper on collisions in MD5, MD4, HAVAL, and full RIPEMD. A copy can be found here: http://eprint.iacr.org/2004/199.pdf This is the second version, after they used the wrong IV's initially. They plan to release a more detailed version in the near future. I wouldn't just wave off the attack; they seem to be able to find collisions fairly quickly. For more info see recent posts on: http://www.mail-archive.com/cryptography%40metzdowd.com/ -- George F. Costanzo PGP Fingerprint: 1E4F 09F2 D637 B917 8D61 0413 4FBC 7DB0 1407 2B6D > -----Original Message----- > From: owner-freebsd-security@freebsd.org [mailto:owner-freebsd- > security@freebsd.org] On Behalf Of David Wolfskill > Sent: Thursday, August 19, 2004 3:24 AM > To: freebsd-security@freebsd.org > Subject: Report of collision-generation with MD5 > > Just got a pointer to this via ACM "TechNews Alert" for today: > > http://www.acm.org/technews/articles/2004-6/0818w.html#item2 > > Seems that "... French computer scientist Antoine Joux reported on > Aug. 12 his discovery of a flaw in the MD5 algorithm, which is often > used with digital signatures...." > > There's more in the article cited above. > > Peace, > david > -- > David H. Wolfskill david@catwhisker.org > Evidence of curmudgeonliness: becoming irritated with the usage of the > word "speed" in contexts referring to quantification of network > performance, as opposed to "bandwidth" or "latency."