[Cryptography] More efficient and just as secure to sign message hash using Ed25519?
Tony Arcieri
bascule at gmail.com
Mon Aug 3 19:44:42 EDT 2015
On Mon, Aug 3, 2015 at 12:21 PM, Allen <allenpmd at gmail.com> wrote:
> Who claimed there is "no added robustness"? It certainly wasn't me. I
> specifically said there was a very small marginal benefit, but that I
> thought it was not the best use of the resources required.
Exploiting hash collisions in digital signature algorithms have lead to
real-world attacks. See e.g. Flame MD5 collision.
--
Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150803/191a26cd/attachment.html>
More information about the cryptography
mailing list