l**n
发帖数: 7272 | |
f*******5
发帖数: 10321 | |
l**n
发帖数: 7272 | 3 这是什么意思?
“The short answer to your question is: SHA-1 is as secure as you can get.
MD5 would be fine too, even MD4; but it could make some investors nervous.
For public relations, it is best to use a "better" hash function, e.g. SHA-
256, even if you truncate its output to 160 or 128 bits (to save on storage
cost). Some of the SHA-3 round-2 candidates appear to be faster than SHA-1
while being arguably "more secure"; yet they are still a bit new, so
sticking to SHA-256 or SHA-512 would be a safer route right now. It would
make you look professional and cautious, which is good.”
【在 f*******5 的大作中提到】
: sha1应该够用了。
|
f*******5
发帖数: 10321 | 4 就是sha1很强了,md5对很多应用也够用了,sha2价值基本在面子上。
storage
【在 l**n 的大作中提到】
: 这是什么意思?
: “The short answer to your question is: SHA-1 is as secure as you can get.
: MD5 would be fine too, even MD4; but it could make some investors nervous.
: For public relations, it is best to use a "better" hash function, e.g. SHA-
: 256, even if you truncate its output to 160 or 128 bits (to save on storage
: cost). Some of the SHA-3 round-2 candidates appear to be faster than SHA-1
: while being arguably "more secure"; yet they are still a bit new, so
: sticking to SHA-256 or SHA-512 would be a safer route right now. It would
: make you look professional and cautious, which is good.”
|
l**n
发帖数: 7272 | 5 有没有reference?
【在 f*******5 的大作中提到】
: 就是sha1很强了,md5对很多应用也够用了,sha2价值基本在面子上。
:
: storage
|
f*******5
发帖数: 10321 | 6 sha-2的wiki上不是有比较。对sha-1的攻击还是在理论上降低数量级,还没人实际构造
出碰撞。根据不用的应用,一般来说具体实现在别的方面引来的漏洞远远大于对sha1的
忧虑。
md5确实能非常快算出碰撞,用于密码,cert之类的肯定不行,但是完全可以在低风险
应用里做完整性验证,尤其是服务都在公司内部。
【在 l**n 的大作中提到】
: 有没有reference?
|
l**n
发帖数: 7272 | 7 wiki我看了,也查了一些网上零碎的讨论。但是要讲清楚,我还做不到。Need to get
to the bottom of it. 因此需要reference。
【在 f*******5 的大作中提到】
: sha-2的wiki上不是有比较。对sha-1的攻击还是在理论上降低数量级,还没人实际构造
: 出碰撞。根据不用的应用,一般来说具体实现在别的方面引来的漏洞远远大于对sha1的
: 忧虑。
: md5确实能非常快算出碰撞,用于密码,cert之类的肯定不行,但是完全可以在低风险
: 应用里做完整性验证,尤其是服务都在公司内部。
|
