From owner-freebsd-security@FreeBSD.ORG Wed Aug 18 17:58:07 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7BC4416A4CE for ; Wed, 18 Aug 2004 17:58:07 +0000 (GMT) Received: from cowbert.2y.net (d46h180.public.uconn.edu [137.99.46.180]) by mx1.FreeBSD.org (Postfix) with SMTP id 06E0243D5E for ; Wed, 18 Aug 2004 17:58:05 +0000 (GMT) (envelope-from sirmoo@cowbert.net) Received: (qmail 48660 invoked by uid 1001); 18 Aug 2004 17:58:04 -0000 Date: Wed, 18 Aug 2004 13:58:04 -0400 From: "Peter C. Lai" To: David Wolfskill Message-ID: <20040818175804.GI346@cowbert.net> References: <200408181724.i7IHORYl013375@bunrab.catwhisker.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200408181724.i7IHORYl013375@bunrab.catwhisker.org> User-Agent: Mutt/1.5.6i cc: freebsd-security@freebsd.org Subject: Re: Report of collision-generation with MD5 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Aug 2004 17:58:07 -0000 Well while collisions are cryptographically significant, they don't necessarily impact any operational security of the the hash. (Since the collision merely means that there are possibly two inputs which will hash to the same digest). Where this could theoretically mean that someone could alter a signed message, we have to look at the chance that what was intended to be altered will satisfy the conditions for the collision. The only 'real' worry about this issue is that if MD5 is already cryptographically challenged in this manner, it may be more possible to find a way to reverse the hash. You can read the discussion here: http://www.rtfm.com/movabletype/archives/2004_08.html#001053 http://www.rtfm.com/movabletype/archives/2004_03.html#000820 On Wed, Aug 18, 2004 at 10:24:27AM -0700, David Wolfskill wrote: > Just got a pointer to this via ACM "TechNews Alert" for today: > > http://www.acm.org/technews/articles/2004-6/0818w.html#item2 > > Seems that "... French computer scientist Antoine Joux reported on > Aug. 12 his discovery of a flaw in the MD5 algorithm, which is often > used with digital signatures...." > > There's more in the article cited above. > > Peace, > david > -- > David H. Wolfskill david@catwhisker.org > Evidence of curmudgeonliness: becoming irritated with the usage of the > word "speed" in contexts referring to quantification of network > performance, as opposed to "bandwidth" or "latency." > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" -- Peter C. Lai University of Connecticut Dept. of Molecular and Cell Biology Yale University School of Medicine SenseLab | Research Assistant http://cowbert.2y.net/