On Mon, Jul 10, 2017 at 10:22 AM, Viktor Dukhovni <openssl-users@xxxxxxxxxxxx> wrote:
--
> On Jul 10, 2017, at 1:12 PM, Niklas Keller <me@xxxxxxxxxxx> wrote:
>
> It's very well worth the effort, otherwise there's a security issue, because certificates can be forged.
Collision attacks don't directly lead to certificate forgery. There are
no known 2nd-preimage attacks on SHA-1.
I'm pretty sure, but are you saying you would rather wait for a demonstration of the weakness being turned into a practical attack?
Second pre-image attacks against reduced SHA-1 have been demonstrated. It's only a matter of time before second pre-image resistance for full SHA-1 is dead and buried.
"Well," Brahma said, "even after ten thousand explanations, a fool is no wiser, but an intelligent person requires only two thousand five hundred."
- The Mahābhārata
- The Mahābhārata
-- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
