[Cryptography] Collisions w/SHA-1 ~$100,000 TODAY

Ryan Carboni ryacko at gmail.com
Sat Oct 10 23:41:34 EDT 2015


What is the memory complexity of this recent attack?

Regardless, the md5 certificate collision attack was only possible by
predicting serial numbers generated by the certificate authority, and it
took multiple weekends to succeed. By that metric, if it costs a single
hundred thousand dollars to generate a collision, it'll take multiple
hundreds of thousands of dollars to succeed. There was also other
difficulties, such as selecting a modulus that would enable such an attack.

It's probably more urgent to add post-quantum root certificates to each
browser than to discontinue SHA-1.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20151010/35bd3e31/attachment.html>


More information about the cryptography mailing list