Ken Hagler's Radio Weblog
Computers, freedom, and anything else that comes to mind.
Home
About
Who is a libertarian?
Ken's Directory
PGP Key
Orange Road
Gun-free Britain
A Nation of Cowards

Subscribe to "Ken Hagler's Radio Weblog" in Radio UserLand.

Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.


Saturday, February 19, 2005
 

PGP Algorithm Migration. According to Callas, "We've been planning for just this sort of event for some time." All PGP products are architected to allow for rapid and non-disruptive migration of all encryption, hash, compression, and signature algorithms. PGP Corporation began planning the migration to more secure hash algorithms after MD5 was compromised last year. Callas addressed the company's design philosophy in a September 2004 CTO Corner article entitled "Much ado about hash functions." At the same time, PGP engineers began implementing a shift from SHA-1 to the stronger algorithms (SHA-256 and SHA-512) while preserving interoperability with existing software. [PGP Corporation]

I may be wrong here, but it seems to me that simply increasing the number of bits in an algorithm that's already been proven vulnerable isn't the best idea. Are there no strong algorithms available that aren't derived from MD4?
7:02:14 PM    comment ()


Click here to visit the Radio UserLand website. © Copyright 2006 Ken Hagler.
Last update: 2/15/2006; 2:04:39 PM.
February 2005
Sun Mon Tue Wed Thu Fri Sat
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28          
Jan   Mar