Bitcoin Forum
November 18, 2024, 08:29:53 PM *
News: Check out the artwork 1Dq created to commemorate this forum's 15th anniversary
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Crypto cadre cloud-cracks SHA-1  (Read 320 times)
PrimeGlitch (OP)
Newbie
*
Offline Offline

Activity: 56
Merit: 0


View Profile WWW
October 11, 2015, 04:28:02 PM
 #1

A crypto cadre has busted the SHA-1 security standard after using $US75,000 of cloud computing resources, handily undercutting conservative crypto cracking estimates and putting such an attack within reach of well-resourced groups.

The work brings forward the beginnings of the death knell for the widely-used hash function by two years. Security minds estimated SHA-1 should be retired in 2017 in-line with then estimated advances in compute capacity.

It was estimated in 2012 that such attacks would cost $173,000 to pull off by 2017.

The work paves the way for SHA-1 collision attacks and while impressive ought not to spark panic.

Crypto mind Bruce Schneier says SHA-1 is known to be theoretically broken and the research merely adds weight to the argument that support for it among browser barons should not be extended.

"This is not that unexpected," Schneier says .

"All the major browsers are planning to stop accepting SHA-1 signatures by 2017 [and] Microsoft is retiring it on that same schedule.

"What's news is that our previous estimates may be too conservative."

Faster compute power, tweaked attacks, and new attack vectors all add up to circumstances in which it is hard to predict the end of life for crypto standards.

The cracking work was performed by researchers Marc Stevens of the Dutch research institute Centrum Wiskunde and Informatica with Pierre Karpman and Thomas Peyrin from Singapore’s Nanyang Technological University.

The trio describes their work in in the paper Freestart collision for full SHA-1 [PDF] and in a dedicated website bearing the tongue-in-cheek title The SHAppening.

The team writes that the freestart collision targeting the SHA-1 internal compression function is "the first practical break of the full SHA-1, reaching all 80 out of 80 steps".

It took 10 days for the researchers' Amazon-powered 64-GPU cluster, dubbed The Kraken, to pull off the attack. Here's how the researchers explain their efforts:

    "Freestart collisions, like the one presented here, do not directly imply a collision for SHA-1. However, this work is an important milestone towards an actual SHA-1 collision and it further shows how graphics cards can be used very efficiently for these kind of attacks.

    We therefore recommend the industry, in particular internet browser vendors and Certification Authorities, to retract SHA-1 soon. We hope the industry has learned from the events surrounding the cryptanalytic breaks of MD5 and will retract SHA-1 before example signature forgeries appear in the near future."

The researchers call on the tech industry to reject a proposal to extend the issuance of SHA-1 certificates by a year due to alleged difficulties in switch over to SHA-3.

The work, like most research, builds on the shoulders of others; the team credits its work as an extension of the recent freestart collision work on reduced-round SHA-1 from CRYPTO 2015
Mrzinzin
Sr. Member
****
Offline Offline

Activity: 294
Merit: 250


View Profile
October 11, 2015, 04:46:41 PM
 #2

now only 255 SHA's left to decript SHA-256
PrimeGlitch (OP)
Newbie
*
Offline Offline

Activity: 56
Merit: 0


View Profile WWW
October 11, 2015, 04:57:36 PM
 #3

now only 255 SHA's left to decript SHA-256

Yes this is true. But like domino’s once one fall's its only a matter of time before the rest come crashing down.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!