SHA1 broken?

David Shaw dshaw at
Wed Feb 16 17:57:36 CET 2005

On Wed, Feb 16, 2005 at 05:28:40PM +0100, Kiefer, Sascha wrote:
> Yes... But you started it ... :)
> Just wanted to say that the difference is enormous.
> As cpu speed grows (and so on) it's just a matter of time!

Yes it is.  Assuming this is true, we must start migrating away from
SHA-1.  Actually, we should start this anyway - even the NIST
recommends moving away from SHA-1 for long-term security.


More information about the Gnupg-users mailing list