SEARCH RESULTS
 
Showing 1-10 of 42 records
 
Expand article

A cryptographic hash function reading guide

2007-11-23 16:01:18 by George Danezis in Light Blue Touchpaper
 
...hash function NIST has announced a competition to determine the next Secure Hash Algorithm, SHA-3. SHA-0 is considered broken, SHA-1 is still secure but no one knows for how long, and the SHA-2 family are desperately slow. (Do not even think about using MD5, or MD4 for which Prof. Wang can find collisions by hand, but RIPEMD-160 still...
 
Tags: function, hash functions, cryptographic hash functions, functions, functions secure, design, hash function design, compression functions, secure hash function
 
 
 
 
Expand article

America's Next Top Hash Function Begins

2008-11-20 02:00:00 by Bruce Schneier in Wired Security
 
...hash standard Hash functions are the most commonly used cryptographic primitive, and the most poorly understood. You can think of them as fingerprint functions: They take an arbitrary long data stream and return a fixed length, and effectively unique, string. The security comes from the fact that while it's easy to generate the fingerprint...
 
Tags: hash function, sha, sha-3, algorithms, cool algorithms, sha family, nist held, unlike encryption algorithms, nist
 
 
 
 
Expand article

The Skein Hash Function

2008-10-29 04:35:29 by schneier in Schneier on Security
 
...hash functions, which have been increasingly under attack . (I wrote about an early NIST hash workshop here Skein is our submission (myself and seven others: Niels Ferguson , Stefan Lucks , Doug Whiting , Mihir Bellare , Tadayoshi Kohno , Jon Callas , and Jesse Walker). Here's the paper: Executive Summary Skein is a new family of...
 
Tags: skein, hash function, function, implement skein-256, implement, skein hashes data, skein website, hashes data, key derivation function
 
 
 
 
Expand article

A New Hash Competition

2008-05-22 14:32:02 by Editor in IEEE Security and Privacy
 
...hash functions in 2004, a rush of new cryptanalytic results cast doubt on the current hash function standards. The relatively new NIST SHA-2 standards aren't yet immediately threatened, but their long-term viability is now in question. The US National Institute of Standards and Technology (NIST) has therefore begun an international...
 
Tags: nist sha-2 standards, competition, standards, nist, sha-3 standard, international competition, collision attacks, long-term viability, article outlines
 
 
 
 
Expand article

John Strand - "Advanced Hacking Techniques and Defenses" (and demos of evilgrade/passing the hash/msfpayload) from Louisville Infosec 2008

2008-10-11 16:08:29 by Editor in Irongeek's Security Site
 
...hash/msfpayload) from Louisville Infosec 2008 John Strand gave this presentation for the Kentuckiana ISSA at the Louisville Infosec 2008 conference. He gives a fascinating talk about why "security in depth" is dead, and lives again. John then goes on to demo Evilgrade, using msfpayload and obscuring it against signature based malware...
 
Tags: john strand, john, louisville infosec, msfpayload, demo evilgrade, defenses, samba client, demos, sam hashes
 
 
 
 
Expand article

John Strand - "Advanced Hacking Techniques and Defenses" (and demos of evilgrade/passing the hash/msfpayload) from Louisville Infosec 2008

2008-10-11 16:08:29 by Editor in Irongeek's Security Site
 
...hash/msfpayload) from Louisville Infosec 2008 John Strand gave this presentation for the Kentuckiana ISSA at the Louisville Infosec 2008 conference. He gives a fascinating talk about why "security in depth" is dead, and lives again. John then goes on to demo Evilgrade, using msfpayload and obscuring it against signature based malware...
 
Tags: john strand, john, louisville infosec, msfpayload, demo evilgrade, defenses, samba client, demos, sam hashes
 
 
 
 
Expand article

Crypto hash algorithm competition set to begin

2008-10-29 00:00:00 by Ellen Messmer in Network World on Security
 
Security experts vying to have their technology selected as the next cryptographic-hash algorithm standard for the U.S. government need to submit their entries this week. Then they will have a long wait ahead: The new Secure Hash Algorithm standard isn't expected to be chosen until 2012
 
Tags: wait ahead, security experts, algorithm standard, government, week, entries, submit, technology
 
 
 
 
Expand article

John Strand - "Advanced Hacking Techniques and Defenses" (and demos of evilgrade/passing the hash/msfpayload) from Louisville Infosec 2008

2008-10-11 16:08:29 by Editor in Irongeek's Security Site
 
...hash/msfpayload) from Louisville Infosec 2008 John Strand gave this presentation for the Kentuckiana ISSA at the Louisville Infosec 2008 conference. He gives a fascinating talk about why "security in depth" is dead, and lives again. John then goes on to demo Evilgrade, using msfpayload and obscuring it against signature based malware...
 
Tags: john strand, john, louisville infosec, msfpayload, demo evilgrade, defenses, samba client, demos, sam hashes
 
 
 
 
Expand article

Updating Hash Security: NIST and SHA-3

2008-07-31 12:33:22 by Editor in IT Security - The IT Security Industry's Web Resource
 
The NIST (National Institute of Standards and Technology) is holding a competition aimed at finding the best possible replacement for the cureent SHAs (Secure Hash Algorithms) SHA-1 and SHA-2
 
Tags: secure hash algorithms, cureent shas, nist, national institute, competition aimed, sha-2, standards, sha-1, technology