In light of recent news about the weaknesses of SHA-1, might it be reasonable to consider SHA-next, where next is 256 or 512? Or perhaps another algorithm entirely?
> -----Original Message----- > From: Mr. J. K M. McKean [mailto:[EMAIL PROTECTED] > Sent: Sunday, February 20, 2005 15:27 > To: OpenOffice.org Users Mailing List > Subject: [users] SHA1 to replace MD5 > > > MD5 "...was all but broken by a German cryptographer, Hans > Dobbertin..."[1] in 1996 wrote PGP's creator and founder of PGP > Corporation, Phil Zimmermann. His application used RSA's MD5 and has > changed to using SHA-1, also openly published developed by > the NSA for > the NIST. I notice you use MD5 checksums on OOo downloads on your > website and I recommend changing to SHA-1. > > I code websites and offer my skills to OpenOffice.org. > > Jerome K Maule M^c Kean > > [1] Zimmermann, Phil /An Introduction to Cryptography/ (PGP > Corporation, > 2003) p. 40. > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
