[Cryptography] Possible SHA2 vulnerability
Phillip Hallam-Baker
phill at hallambaker.com
Thu Jun 29 13:56:02 EDT 2017
On Wed, Jun 28, 2017 at 12:09 PM, Ron Garret <ron at flownet.com> wrote:
>
> On Jun 28, 2017, at 9:00 AM, Ron Garret <ron at flownet.com> wrote:
>
> > https://github.com/laie/WorldsFirstSha2Vulnerability
>
> Turns out to be a false alarm.
>
> https://crypto.stackexchange.com/questions/48580/fixed-
> point-of-the-sha-256-compression-function
>
> Oh well, learn something new every day.
>
I am confused. Since when did SHA-256 have an initialization vector?
If IV input to the MD construction and the output are the same for any
block input, construction of an arbitrary number of collisions is trivial
since H (X) = H (X+X) = H (X+X ... X)
What is being shown here?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20170629/5e0271a3/attachment.html>
More information about the cryptography
mailing list