Research Duo Showcases First-Ever SHA-1 Chosen-Prefix Collision Attack



techrepublic cheat sheet



Attacks on the SHA-1 hashing algorithm just got a lot more dangerous last week with the discovery of the first-ever "chosen-prefix collision attack," a more practical version of the SHA-1 collision attack first carried out by Google two years ago.


What this means is that SHA-1 collision attacks can now be carried out with custom inputs, and they're not just accidental mishaps anymore, allowing attackers to target certain files to duplicate and forge.


SHA-1 collision attacks


The SHA-1 hashing function was theoretically broken in 2005; however, the ..