Re: Moving away from MD5

To: Thomas.Koenig@ciw.uni-karlsruhe.de (Thomas König)
Cc: debian-devel@lists.debian.org (debian)
Subject: Re: Moving away from MD5
From: Jim Pick <jim@jimpick.com>
Date: Mon, 23 Jun 1997 10:23:43 -0700
Message-id: <[🔎] 199706231723.KAA32730@fleming.jimpick.com>
In-reply-to: Your message of "Mon, 23 Jun 1997 16:07:35 +0200." <[🔎] 199706231407.QAA10455@mvmap66.ciw.uni-karlsruhe.de>

Thomas Koenig wrote:
> I think we should start moving away from MD5 as our main hash function.
> An attractive alternative would be RIPEMD-160. 
> http://www.esat.kuleuven.ac.be/~bosselae/ripemd160.html

This is probably a good thing to agree to do, before Klee redesigns dpkg to
handle verification and other things (I think he's in California doing
contract work right now).

One drawback is that it is 3 times as slow - and I assume that the output
of the hash function is going to take 25% more bytes to represent it.

Is there an equivalent of the md5sum program for it?

Sound like a good idea to me, but I'm no expert on crypto.

Cheers,

 - Jim

Attachment: pgp5jd5RhvJ16.pgp
Description: PGP signature

Reply to:

References:
- Moving away from MD5
  - From: Thomas Koenig <ig25@mvmap66.ciw.uni-karlsruhe.de>

Prev by Date: Bug: cross-device link
Next by Date: Re: Editor wars considered harmful
Previous by thread: Re: Moving away from MD5
Next by thread: Re: Moving away from MD5
Index(es):
- Date
- Thread