SHA-1 er død

Schneier on Security: SHA-1 Broken:

"SHA-1 has been broken. Not a reduced-round version. Not a simplified version. The real thing. [...] This attack builds on previous attacks on SHA-0 and SHA-1, and is a major, major cryptanalytic result. It pretty much puts a bullet into SHA-1 as a hash function for digital signatures."

Auda. Digitale signaturer fikk nettopp en bulk. 2⁶⁹ hash-operasjoner er fremdeles en del arbeid, men vesentlig mindre enn 2⁸⁰…