Weaknesses in SHA-1

Atom 'Smasher' atom at suspicious.org
Sat Oct 2 08:56:27 CEST 2004 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

with all this talk of (allegedly!) weak and broken hashes, i'd like to 
throw out a construct to combine 2 or more hashes and (it seems) make the 
construct more secure than either one of the hashes independently: take 
two or more hashes and XOR them.

if i XOR the output of an SHA-1 and RIPEMD-160 hash, the only way to 
"break" the resulting hash would require breaking *both* SHA-1 and 
RIPEMD-160.

the same mechanism can apply to more than two hashes as input, but i'm not 
enough of a math guy to figure out where is the point of diminishing 
return (or if there is such a point). intuitively, it seems (to me) that 
if N hashes are used as input, the protocol is secure as long as any one 
of the input hashes can not be broken. i'm also not enough of a math guy 
to figure out (quantifiably) what would be gained (or lost) by combining 
hashes of different sizes, and maybe even truncating the output.

and no, the little voices in my head are not suggesting that this ~should~ 
be done because the sky is falling... they're just saying that this 
~could~ be done, if the general consensus is that the sky will fall. OTOH, 
what if some secret agency known by three letters could break some hashes, 
but not others....


          ...atom

   _________________________________________
   PGP key - http://atom.smasher.org/pgp.txt
   762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
   -------------------------------------------------

  	"The intifada is the Palestinian people's war of national
  	 liberation. We enthusiastically chose to become a
  	 colonialist society, ignoring international treaties,
  	 expropriating lands, transferring settlers from Israel
  	 to the occupied territories,  engaging in theft and
  	 finding justification for all these activities... we
  	 established an apartheid regime."
  		-- Michael Ben-Yair, Israel's attorney general, 1993-1996
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.3.6 (FreeBSD)
Comment: What is this gibberish?
Comment: http://atom.smasher.org/links/#digital_signatures

iQEcBAEBCAAGBQJBXlEhAAoJEAx/d+cTpVciSakH/jpZkHdKceNAHu0z92GHijZf
uqYbJlF49v9ZWf41/nVuL5U1IBcVvlelhmfhzoxmncWZM/5RT1loFNZhuTezvfke
kERGvyclJCtlikPS4WyoBwYfsvvP5nEN6MqToA8Sn8DLBdPuNy7CdW7AlyME1rkN
RGzTO7aJDKdq4yJicERVeopd5yCsqj68Y5jsukPg2RL1A7SiCY6gBqBBb5VBFtZK
nIMPPGIdJn1jvLErGc0L+AP+L+CNtKKQIPX0jBquXH2Fmyvq+GTOwJl20GbZxSRK
ST4IDJrjBt3hUMsGK2ZyN0/gBEnx6enQxki9i3iLpNfIXpaXbsmsKZNnbL6wm7o=
=DrnD
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list