Re: XML signature HMAC truncation authentication bypass

2009-07-29 Thread Bill Stewart
At 05:11 PM 7/27/2009, Jon Callas wrote: By the way, do you think it's safe to phase out MD5? That will break all the PGP 2 users. Depends - if you're only replacing it with SHA-1, it's probably not worthwhile.. And if you're breaking things anyway, might as well replace most of the

Re: New Technology to Make Digital Data Disappear, on Purpose

2009-07-29 Thread Ali, Saqib
Online demo of Vanish: http://regina.cs.washington.edu/cgi-bin/vanishservice.py saqib http://kawphi.blogspot.com - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to majord...@metzdowd.com