What I have done because of this issue is start done dual check sums.
I do an MD5 and SHA1. It would be hard to disprove both of them in
tangent. Even thou each check sum standing alone could possibly have
probems. Collision would never happen at the same place in both
checksums. I think this should be the new stander in case any thing else
come up in security research.
Richard Rager
On Tue, 9 Nov 2004, Ferrill, Rob wrote:
Has anyone stopped using MD5 for hashing evidence files since the
disclosure of collision issues at the Crypto 2004 conference? There was
some concern raised during a discussion this morning that this may not
be acceptable in court cases anymore to prove evidence integrity.
Thanks,
Rob
Confidentiality Notice: This e-mail communication and any attachments may
contain
confidential and privileged information for the use of the designated
recipients named above. If
you are not the intended recipient, you are hereby notified that you have
received this
communication in error and that any review, disclosure, dissemination,
distribution or
copying of it or its contents is prohibited. If you have received this
communication in
error, please notify me immediately by replying to this message and deleting
it from your
computer. Thank you.
-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
