Deploying a New Hash Algorithm
Steven M. Bellovin,Eric Rescorla +1 more
- 01 Jan 2005
TL;DR: This work analyzes a number of protocols, including S/MIME and TLS, and explains the necessary changes, shows how the conversion can be done, and lists what measures should be taken immediately.
read more
Abstract: The strength of hash functions such as MD5 and SHA-1 has been called into question as a result of recent discoveries. Regardless of whether or not it is necessary to move away from those now, it is clear that it will be necessary to do so in the not-too-distant future. This poses a number of challenges, especially for certificate-based protocols . We analyze a number of protocols, including S/MIME and TLS. All require protocol or implementation changes. We explain the necessary changes, show how the conversion can be done, and list what measures should be taken immediately.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Strengthening digital signatures via randomized hashing
Shai Halevi,Hugo Krawczyk +1 more
- 20 Aug 2006
TL;DR: The goal is to free practical digital signature schemes from their current reliance on strong collision resistance by basing the security of these schemes on significantly weaker properties of the underlying hash function, thus providing a safety net in case the hashes in use turn out to be less resilient to collision search than initially thought.
Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.5 Message Specification
Sean Turner,Blake C. Ramsdell,Jim Schaad +2 more
- 08 Jul 2016
TL;DR: This document defines Secure/Multipurpose Internet Mail Extensions (S/MIME) version 3.1.1, which provides a consistent way to send and receive secure MIME data.
150
•Posted Content
A literature survey
Gildas Morvan
- 01 Jan 2013
TL;DR: The objective of the survey is to cover the state-of-the-art in three areas of meta-analysis where the authors believe there are still unsolved problems and where the choice of approach may still be contentious.
138
Securing BGP — A Literature Survey
TL;DR: The Internet's routing architecture and the design of BGP in particular is examined, and no proposal has been seen as offering a combination of adequate security functions, suitable performance overheads and deployable support infrastructure.
References
•Proceedings Article
The MD5 Message-Digest Algorithm
Ronald L. Rivest
- 01 Apr 1992
TL;DR: This document describes the MD5 message-digest algorithm, which takes as input a message of arbitrary length and produces as output a 128-bit "fingerprint" or "message digest" of the input.
Security Architecture for the Internet Protocol
R. Atkinson
- 01 Aug 1995
TL;DR: The Security Architecture for the Internet Protocol describes an updated version of the security architecture for IP traffic.
HMAC: Keyed-Hashing for Message Authentication
Hugo Krawczyk,Mihir Bellare,Ran Canetti +2 more
- 01 Feb 1997
TL;DR: This document describes HMAC, a mechanism for message authentication using cryptographic hash functions that can be used with any iterative cryptographic hash function, e.g., MD5, SHA-1, in combination with a secret shared key.
2.6K
The TLS Protocol Version 1.0
T. Dierks,C. Allen +1 more
- 01 Jan 1999
TL;DR: This document specifies Version 1.0 of the Transport Layer Security (TLS) protocol, which provides communications privacy over the Internet by allowing client/server applications to communicate in a way that is designed to prevent eavesdropping, tampering, or message forgery.
2.2K
Related Papers (5)
Xiaoyun Wang,Yiqun Lisa Yin,Hongbo Yu +2 more
- 14 Aug 2005
Xiaoyun Wang,Hongbo Yu +1 more
- 22 May 2005
Ivan Damgård
- 01 Jul 1989
Ralph C. Merkle
- 01 Jul 1989
Mihir Bellare,Ran Canetti,Hugo Krawczyk +2 more
- 18 Aug 1996