On Mon, May 19, 2008 at 6:00 AM, Michael Sierchio <[EMAIL PROTECTED]> wrote: > Theodore Tso wrote:
>> ... I'd be comfortable with an adversary knowing the first megabyte of data >> fed >> through SHA1, as long as it was followed up by at least 256 bits which >> the adversary *didn't* know. > I'd be comfortable with an adversary knowing the first zetabyte of > data fed though SHA1, as long as it was followed up by at least 256 bits > which the adversary didn't know. ;-) You are being a few orders of magnitude too optimistic here, though ... ;-) A zettabyte would be 2^78 bits (less if you use the standard decimal version of "zetta"), but SHA-1 will only handle inputs up to 2^64 -1 bits. Bodo ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
