[Full-disclosure] Re: Case ID 51560370 - Notice of Claimed Infringement
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Fri Apr 8 05:42:52 BST 2005
On Thu, 07 Apr 2005 14:52:55 PDT, Mike Owen said:
> As reported over the last few months, MD5 is very broken. MD5
> collisions are very easy to generate, with some reports of as little
> as a few hours needed on reasonable hardware to generate a collision.
There's now a known attack for generating 2 strings that happen to hash
to the same MD5 hash value fairly easily.
The more general problem of generating a second string that hashes to
an already known/fixed MD5 hash is still basically infeasible (unless you're
a very well funded spook agency *and* know something the rest of us don't)...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050408/0a12b8ee/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.