emc3 - Slashdot User

Follow Slashdot blog updates by subscribing to our blog RSS feed

Comment Why not multi-algo hashes? (Score 1) 253

by emc3 on Friday September 23, 2005 @01:36PM (#13630551) Attached to: Practical Exploits of Broken MD5 Algorithm

Why don't we just make it a standard practice to provide "verification" hash checksums from multiple algorithms? If you provide *both* the MD5 and the SHA1 hashes for a file, it will be many, many levels of magnitude more difficult to construct replacement data which hashes the same both ways. The collision space for this must be infintessimal?

If everybody just switches to AES or somesuch, aren't we just postponing the problem until similar methods of attack are proven against its algorithms? By combining multiple hash algorithms, you gain a sort of independent oversight.

« Newer Older »

Slashdot Top Deals

emc3 (22477)

dougal@gunters.org
http://dougal.gunters.org/
AOL IM: EMCampbell3 (Add Buddy, Send Message)
Jabber: dougal@gunters.org
SEE! The geek waste time at work!
WATCH! As he leaps into action to solve problems on the server!
STARE IN AMAZMENT! As he solves the problem by cycling the power!
RUN, DON'T WALK! The theaters are bound to be packed!

emc3's Achievements

Years Read
Days Read in a Row
The Maker

emc3's Comments

Why not multi-algo hashes?
6% (Score:2, Informative)
Spin (Score:2, Interesting)
Re:Animated celebs... (Score:3)
Alternate live news source (Score:2, Informative)

And on the seventh day, He exited from append mode.