dnsext-2----Page:2
1 2 3 4 5 6 7
|
SHA-1 collision attack Takes less time to find two sets of data that have same SHA-1 signature It was assumed to take around 2^80 attempts Attack reduces to 2^69. Still a real long time. Not known if the attack works on >structured= data such as DNS RR=s and DNS messages. Attacks only get better Hardware gets better Trivial to distribute effort HMAC is resistant to this attack |