On Tue, 6 Feb 2007, Amos Shapira wrote:
On 06/02/07, Peter <[EMAIL PROTECTED]> wrote:
1. There are no irreversible single-factor functions. There are
functions that are difficult to reverse now but may not be tomorrow.
This is already proven for MD5 and SHA-1.
If by that you refer to examples of being able to find two or more different
messages with the same MD5 or SHA-1 digest then you are right, but it's
still impossible to take a SHA-1 digest of limited number of bits and
reverse it to the original message, fortunately.
Yes of course but if someone manages to fake being 'you' when logging in
to a $pay service using a duplicated md5 authentication then it is
called 'irreversibly broken' <pun> imho. That is not yet the case afaik
but ...
Peter
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
