[XCON] SHA-1 broken?

To: XCON <xcon at ietf.org>
Subject: [XCON] SHA-1 broken?
From: Gonzalo Camarillo <Gonzalo.Camarillo at ericsson.com>
Date: Wed, 23 Feb 2005 09:48:00 +0200
List-help: <mailto:xcon-request@ietf.org?subject=help>
List-id: Centralized Conferencing <xcon.ietf.org>
List-post: <mailto:xcon@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/xcon>, <mailto:xcon-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/xcon>, <mailto:xcon-request@ietf.org?subject=unsubscribe>
Sender: xcon-bounces at ietf.org
User-agent: Mozilla Thunderbird 1.0 (Windows/20041206)

Hello,

it seems that SHA-1 may have been broken:
http://www.schneier.com/blog/archives/2005/02/sha1_broken.html

In any case, BFCP uses HMAC-SHA1, as defined in RFC 2104, and it seems
that the collison attack which may have been found will not be relevant.

Gonzalo

_______________________________________________
XCON mailing list
XCON at ietf.org
https://www1.ietf.org/mailman/listinfo/xcon