[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] Re: RFC: Fake IDs
From: |
Ethan Blanton |
Subject: |
Re: [Monotone-devel] Re: RFC: Fake IDs |
Date: |
Tue, 18 Jul 2006 23:01:32 -0400 |
User-agent: |
Mutt/1.5.11 |
Jack Lloyd spake unto us the following wisdom:
> On Tue, Jul 18, 2006 at 06:39:49PM -0700, Zack Weinberg wrote:
> > Perhaps I only say this because I am not a cryptographer at all, but
> > it seems to me that the collision probability results might depend on
> > the assumption that both sides of the potential collision are in fact
> > SHA of some text. In which case, maybe a bitstream generated by
> > pounding on the keyboard is more likely to collide.
>
> Nor am I, but I believe the collision probabilities are the same, _if_
> you assume that SHA-1 and your PRNG are both good (ie, behave like a
> random function). However, that adds a second assumption (good PRNG)
> that did not exist before.
For a good cryptographic hash, a = H(b) for every possible a and b
should have the same probability, as far as you or I are concerned.
> SHA-1(a) == SHA-1(b) -> SHA-1 collision found -> weakness in SHA
>
> a == SHA-1(b) -> Maybe a problem in the RNG, maybe a problem in SHA... maybe
> just a strange interaction between the two that you didn't
> expect.
If you can find an RNG such that a = SHA-1(b) in any predictable
fashion, drop me a line and we'll write a paper ... and then get
moderately famous. ;-)
Ethan
--
The laws that forbid the carrying of arms are laws [that have no remedy
for evils]. They disarm only those who are neither inclined nor
determined to commit crimes.
-- Cesare Beccaria, "On Crimes and Punishments", 1764
signature.asc
Description: Digital signature
- [Monotone-devel] RFC: Fake IDs, Zack Weinberg, 2006/07/18
- [Monotone-devel] Re: RFC: Fake IDs, Graydon Hoare, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Zack Weinberg, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Jack Lloyd, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Nathaniel Smith, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Zack Weinberg, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Jack Lloyd, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs,
Ethan Blanton <=
- Re: [Monotone-devel] Re: RFC: Fake IDs, Jack Lloyd, 2006/07/19
- Re: [Monotone-devel] Re: RFC: Fake IDs, Nathaniel Smith, 2006/07/19
- Re: [Monotone-devel] Re: RFC: Fake IDs, Zack Weinberg, 2006/07/19
- [Monotone-devel] Re: RFC: Fake IDs, Graydon Hoare, 2006/07/19
- Re: [Monotone-devel] Re: RFC: Fake IDs, Daniel Carosone, 2006/07/19
- Re: [Monotone-devel] Re: RFC: Fake IDs, Daniel Carosone, 2006/07/19
- Re: [Monotone-devel] Re: RFC: Fake IDs, Jack Lloyd, 2006/07/19
- [Monotone-devel] Re: RFC: Fake IDs, Graydon Hoare, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Zack Weinberg, 2006/07/18
- Re: [Monotone-devel] Re: RFC: Fake IDs, Nathaniel Smith, 2006/07/19