On Mon, Mar 06, 2017 at 06:30:34PM +0100, [email protected] wrote: > On Mon, 6 Mar 2017 14:54:44 +0100 > Emmanuel Hocdet <[email protected]> wrote: > > xxh64 is not a fingerprint class algorithme, sha256 should be use. > > > Hi Manu, > > My choice is driven regarding these hash algorithm elements: > > - The repartiion of the hash (and the collision risk) > > - The execution time. > > I choosed xxh64 because it is very quick, the repartion is good and the > collision risk is low. Obviously sha1 is better because the collision > risk is very low, but is very slow. So I prefer xxh64.
Yep and also in the end we only keep 32 or 64 bit of the resulting hash, we're not doing crypto here. The typical use case is to have a reasonably good indication whether two very large cipher lists are similar or not without storing them. Willy
