[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Moving away from MD5

Thomas Koenig wrote:
> An attractive alternative would be RIPEMD-160.  SHA-1, another
> alternative, has the main problem that its design parameters are secret.
> Source code for RIPEMD-160 is avialiable, and the algorithm is in the
> public domain.  For more information, you can check out
> http://www.esat.kuleuven.ac.be/~bosselae/ripemd160.html

Forced to choose, I would say SHA-1.  The design parameters aren't
_that_ secret; there's an excellent discussion and comparison in
Schneier's "Applied Cryptography" 2nd Ed.  (You don't have a copy? 
Shame on you!)

I'll look at RIPEMD-160 as you suggested, but am skeptical for now.


TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to: