Skip to Content
MIT Technology Review
  • Featured
  • Topics
  • Newsletters
  • Events
  • Podcasts
    • Sign in
    Uncategorized

    Cryptographers Find New Weaknesses in Common Security Algorithms

    More fodder for the computer security paranoid: Computer scientists have reported previously unknown flaws in three key mathematical functions embedded in common security applications at this week’s Crypto 2004 conference in Santa Barbara, CA.Both Chinese and French researchers reported weaknesses…
    August 18, 2004

    More fodder for the computer security paranoid: Computer scientists have reported previously unknown flaws in three key mathematical functions embedded in common security applications at this week’s Crypto 2004 conference in Santa Barbara, CA.

    Both Chinese and French researchers reported weaknesses in a popular algorithm called MD5, often used with digital signatures. Then Eli Biham of the Technion Institute in Israel reported some early work toward identifying vulnerabilities in the SHA-1 “Secure Hash Algorithm,” which was believed to be secure. The news was reported here on CNET News.

    While the results are all preliminary, intruders could eventually use them to insert “back doors” into computer code or to forge electronic signatures.

    (Simson Garfinkel recently wrote a nice explanation of hash functions in a column titled “Fingerprint Your Files.”)

    The SHA-1 algorithm is currently considered the gold standard hash algorithms and is embedded in popular security programs like PGP (used to encrypt e-mail) and SSL (used to secure Web transactions). The National Institute of Standards and Technology has certified it, and it’s the only signing algorithm approved for use in the U.S. government’s Digital Signature Standard.

    Seems like it’s time for mathematicians and computer scientists to start working on the next-next generation of security algorithms.

    Keep Reading

    Most Popular

    Europe's AI Act concept
    Europe's AI Act concept

    A quick guide to the most important AI law you’ve never heard of

    The European Union is planning new legislation aimed at curbing the worst harms associated with artificial intelligence.

    Uber Autonomous Vehicles parked in a lot
    Uber Autonomous Vehicles parked in a lot

    It will soon be easy for self-driving cars to hide in plain sight. We shouldn’t let them.

    If they ever hit our roads for real, other drivers need to know exactly what they are.

    supermassive black hole at center of Milky Way
    supermassive black hole at center of Milky Way

    This is the first image of the black hole at the center of our galaxy

    The stunning image was made possible by linking eight existing radio observatories across the globe.

    transplant surgery
    transplant surgery

    The gene-edited pig heart given to a dying patient was infected with a pig virus

    The first transplant of a genetically-modified pig heart into a human may have ended prematurely because of a well-known—and avoidable—risk.

    Stay connected

    Illustration by Rose WongIllustration by Rose Wong

    Get the latest updates from
    MIT Technology Review

    Discover special offers, top stories, upcoming events, and more.

    Thank you for submitting your email!

    Explore more newsletters

    It looks like something went wrong.

    We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.