Kyle Hamilton wrote:
On 5/17/05, Nelson Bolyard <[EMAIL PROTECTED]> wrote:
>>
SSL offers a wealth of different bulk encryption algorithms and several
MAC algorithms. Some of these are more costly than others. The cheapest
bulk encryption algorithm (by far) is RC4. The cheapest MAC algorithm
uses the MD5 hash. SHA1 is consderably slower, about twice as slow as
RC4 encryption.
MD5 has been declared 'insecure', and SHA-1 has been declared
'potentially insecure'. The US's FIPS standards are now phasing out
SHA-1, and are suggesting that SHA-256 or more
computationally-expensive hashing algorithms be used from here on out.
MAC algorithms using MD5 and SHA-1 are different from MD5 and SHA-1.
MAC has a key. The attacks on MD5/SHA-1 don't work on MAC algorithms
using MD5/SHA-1.
Wan-Teh
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
