Notifications
Clear all

SHA-1 > SHA-3 transition (crypto)

6 Posts
4 Users
0 Likes
254 Views
RolfGutmann
(@rolfgutmann)
Posts: 1185
Noble Member
Topic starter
 

Crypto know-how to share publicly is dangerous, but collaboration necessary. Top Cryptographer
circles are smaller and more closed than any comparable. To reveal a break-in highly difficult.

The transition SHA-1 to SHA-3 implies a difficult time period with higher risks. Think in comparison about TLS 1.2 downgrading to TLS 1.1 in FWs for SSL Inspection.

Can we discuss the transition risks without sharing dangerous know-how here?

 
Posted : 15/04/2016 5:55 pm
Bunnysniper
(@bunnysniper)
Posts: 257
Reputable Member
 

Crypto know-how to share publicly is dangerous

"RolfGutmann"can you give us an example where a Cryptopgrapher was shot down or his house bombed? Did you ever hear from Kerckhoffs principle? Crypto knowledge *has to be shared* to be effective! I do not understand anything from your post, none of your words make any sense to me. Could you please explain your thoughts?

good night,
Robin

 
Posted : 16/04/2016 1:08 am
(@athulin)
Posts: 1156
Noble Member
 

The transition SHA-1 to SHA-3 implies a difficult time period with higher risks. Think in comparison about TLS 1.2 downgrading to TLS 1.1 in FWs for SSL Inspection.

Can you put the question on an actual forensic basis? As it is formulated now, you may be better off asking in a pure crypto forum.

 
Posted : 16/04/2016 11:01 am
RolfGutmann
(@rolfgutmann)
Posts: 1185
Noble Member
Topic starter
 

#Bunnysniper, I understand your reply and can explain. Organized crime uses every possibility to hide or fake any possible artifacts (my ESN post). Physical theft declines, digital increases. Crypto itself never was broken, if the technical realisation fails, crypto is not responsable. We here try to anticipate upcoming digital crime we manytimes afterwards forensically examine.

The better we understand possible crime the better we find artifacts.

 
Posted : 17/04/2016 12:44 am
RolfGutmann
(@rolfgutmann)
Posts: 1185
Noble Member
Topic starter
 

#athulin, maybe you are right. But its more about anticipation then cryptoanalysis

 
Posted : 17/04/2016 12:46 am
jaclaz
(@jaclaz)
Posts: 5133
Illustrious Member
 

Can we discuss the transition risks without sharing dangerous know-how here?

Yes, as long as you continue to post as cryptically as you have done lately.

Particularly I appreciated the explanation you offered, as I have rarely seen explanations that need to be read twice or thrice before being convinced that they don't actually explain anything.

Criminals are unlikely to have the time to attempt decrypting your posts (and I presume a number of non-criminal members won't as well).

Only a few may want to look for your vague references like "my ESN post", possibly this thread? ?
http//www.forensicfocus.com/Forums/viewtopic/t=13942/

It's good news however that physical theft is declining. ) (that's more or less the ONLY thing I can understand of your "explanation", let alone your OP cry )

jaclaz

 
Posted : 17/04/2016 11:31 pm
Share: