MD5 considered harmful today
Creating a rogue CA certificate Alexander Sotirov, Marc Stevens, Jacob Appelbaum, Arjen Lenstra, David Molnar, Dag Arne Osvik, Benne de Weger [Dec. 31, 2008] Responses from Verisign (RapidSSL), Microsoft and Mozilla. [Jan. 2, 2009] Responses from TC TrustCenter and RSA, and a US-CERT Vulnerability Note. [Jan. 8, 2009] Video and audio files of the 25C3 presentation are available from CCC. [Jan. 15,
OpenSSH æƒ…å ± - [misc][æš—å·] 原ç†ã‹ã‚‰å¦ã¶ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ãƒ»ã‚»ã‚ュリティ?
日経Linuxã«æŽ²è¼‰ã•ã‚Œã¦ã„ãŸã‚‰ã—ã„記事「原ç†ã‹ã‚‰å¦ã¶ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ãƒ»ã‚»ã‚ュリティã€ãŒITproã§æŽ²è¼‰ã•ã‚Œã¦ã„ã¾ã™. 第4回ã¨ç¬¬5回をèªã¿ã¾ã—ãŸãŒ, 内容ã«å¤šãã®é–“é•ã„ãŒè¦‹ã‚‰ã‚Œã¾ã™. 原ç†ã‹ã‚‰å¦ã¶ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ãƒ»ã‚»ã‚ュリティ 第4回 ãƒãƒƒã‚·ãƒ¥é–¢æ•°ï¼šITpro 原ç†ã‹ã‚‰å¦ã¶ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ãƒ»ã‚»ã‚ュリティ 第5回 電å証明書ã¨èªè¨¼å±€ï¼šITpro 年内ä¸ãらã„ã«æ™‚間を見ã¤ã‘ã¦æŒ‡æ‘˜ã—ãŸã„ã¨æ€ã„ã¾ã™.(ä»–ã®ã ã‚Œã‹ãŒã‚„ã£ã¦ã¦/ã‚„ã£ã¦ãれるã¨ã„ã„ã‚“ã§ã™ã‘ã©ã) (2008/01/06)第4回, 第5回ã«ã¤ã„ã¦æŒ‡æ‘˜ã—ã¾ã—ãŸ. TrackBackã‹ã‚‰è¾¿ã£ã¦ãã ã•ã„. ãれ以外ã®å›žã¯è¦‹ãŸã‚‰æŒ‡æ‘˜ã—ãŸããªã‚Šãã†ãªã®ã§è¦‹ã¦ã„ã¾ã›ã‚“. (2008/01/09)æœæ’°ãªç ”究者ã®æ—¥è¨˜ã«ãŠã„ã¦, 第1〜4回ã«å¯¾ã™ã‚‹è©•ãŒã‚ã‚Šã¾ã—ãŸ. 1〜3回もã ã‚ãªè¨˜äº‹ã®ã‚ˆã†ã§ã™. æœæ’°ãªç ”究者ã®æ—¥è¨˜: 原ç†ã‹ã‚‰å¦ã¶ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ãƒ»ã‚»ã‚ュリティ(1)
HMAC: Keyed-Hashing for Message Authentication
H. Krawczyk IBM M. Bellare UCSD R. Canetti IBM 1997å¹´ 2月 HMAC: メッセージèªè¨¼ã®ãŸã‚ã®éµä»˜ãƒãƒƒã‚·ãƒ³ã‚° (HMAC: Keyed-Hashing for Message Authentication) ã“ã®ãƒ¡ãƒ¢ã®ä½ç½®ä»˜ã‘ ã“ã®ãƒ¡ãƒ¢ã¯ã€ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆãƒ»ã‚³ãƒŸãƒ¥ãƒ‹ãƒ†ã‚£ã«å¯¾ã—ã¦æƒ…å ±ã‚’æä¾›ã™ã‚‹ã‚‚ã®ã§ã‚る。ã“ã®ãƒ¡ãƒ¢ã¯ã€ä½•ã‚‰ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã®æ¨™æº–ã‚’è¦å®šã™ã‚‹ã‚‚ã®ã§ã¯ãªã„。ã“ã®ãƒ¡ãƒ¢ã®é…布ã«åˆ¶é™ã¯ãªã„。 è¦æ—¨ ã“ã®æ–‡æ›¸ã§ã¯ã€æš—å·ãƒãƒƒã‚·ãƒ¥é–¢æ•°ã‚’使用ã—ã¦ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸èªè¨¼ã‚’è¡Œãªã†ä»•çµ„ã¿ã§ã‚ã‚‹ HMAC ã«ã¤ã„ã¦è¨˜è¿°ã™ã‚‹ã€‚HMAC ã¯ã€MD5 ã‚„ SHA-1 ãªã©ã®å復暗å·ãƒãƒƒã‚·ãƒ¥é–¢æ•°ã‚’秘密ã®å…±æœ‰éµã¨çµ„ã¿åˆã‚ã›ã¦ä½¿ç”¨ã™ã‚‹ã€‚HMAC ã®æš—å·ã¨ã—ã¦ã®å¼·åº¦ã¯ã€ä½¿ç”¨ã—ã¦ã„ã‚‹ãƒãƒƒã‚·ãƒ¥é–¢æ•°ã®ãƒ—ãƒãƒ‘ティã«ä¾å˜ã™ã‚‹ã€‚ 1.ã¯ã˜ã‚ã« ä¿¡é ¼ã§ããªã„メディア上をä¼é€ã—ã€è“„ç©ã•ã‚Œã‚‹æƒ…å ±ã®
Why So Serious
Artificial intelligenceSoftware developmentProgramming languagesData and knowledge engineeringInformation management 6. Computational intelligence in smart systems 7. Computer technologies in various fields 8. Programming practices 9. Information and communication technologies in education Our conference is a great excuse to get away from your work routine, make useful acquaintances, present your
HashClash
HashClash started as Marc Stevens' TU/e Master Degree project. The purpose is to extend both theoretical and experimental results on collision generation for the MD5 and SHA-1 hash functions, based on the ideas of Xiaoyun Wang and her co-workers. Marc's MSc project has been very successful. Marc defended his MSc thesis in June 2007, and passed with flying colors. His grade was 10, which is the hig
Hash Functions | CSRC
SHA-3 Project A cryptographic hash algorithm (alternatively, hash "function") is designed to provide a random mapping from a string of binary data to a fixed-size “message digest†and achieve certain security properties. Hash algorithms can be used for digital signatures, message authentication codes, key derivation functions, pseudo random functions, and many other security applications. The Fede
1
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
SANS.edu Internet Storm Center - SANS Internet Storm Center
A cryptographic hash function reading guide | Light Blue Touchpaper
{{#tags}}- {{label}}
{{/tags}}