[Dshield] Crypto Question
Jon Kibler
Jon.Kibler at aset.com
Fri Mar 6 01:03:40 GMT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Valdis.Kletnieks at vt.edu wrote:
<SNIP!>
>
> Or more concretely - if you're computing a SHA-256 hash because you don't trust
> the MD5 hash, maybe it's time to just *retire* the MD5 entirely.
>
Okay, can I please drag this discussion back to the question of MAC vs.
Password Hash?
I think everyone can agree that using MD5 for MAC may be a bad idea. At
least for now, regardless of opinion, please let's drop that aspect.
Can someone please explain how MD5 is more than a trivial risk for
password hashes? I would have to think that the risk from lame user
password choices, choices that increased susceptibility to dictionary or
pattern attacks, would be a far greater risk.
Also, from the collisions I have seen, they have all involved high-order
bit-flips. Thus, if your passwords were created from the ASCII
characters on the keyboard, the collision would clearly give you a
non-ASCII value that would be an obvious translation into the actual
ASCII character password.
So even of there were 8 or 16 possible collisions for a given hash
value, the complexity of a properly salted MD5 password hash makes it so
many orders of magnitude more compute intensive to attack than the old
Unix DES-crypt, I would have to think that it will ALWAYS be a more
secure password.
I fail to see the practical issue for not using MD5 for password hashes.
Will someone please enlighten me?
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
http://www.linkedin.com/in/jonrkibler
My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkmwdmsACgkQUVxQRc85QlOtAwCbBNNmUiH5IM+OLcsBWfUhGNLn
lpAAoJbBoGlmWps5LekLa298kTjlYxXh
=Vb64
-----END PGP SIGNATURE-----
=========================
Filtered by: TRUSTEM.COM's Email Filtering Service
http://www.trustem.com/
No Spam. No Viruses. Just Good Clean Email.
More information about the Dshield
mailing list