[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <200508111728.j7BHSHRV001854@turing-police.cc.vt.edu>
Date: Thu Aug 11 18:28:33 2005
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu)
Subject: Motorist wins case after maths whizzes break
speed camera code (fwd)
On Wed, 10 Aug 2005 22:07:19 CDT, "J.A. Terranson" said:
> Mr Mirabilis yesterday said he had received more than 100 inquiries
> from motorists anxious to use the same defence. "People have shown it
> [the algorithm] has been hacked and it's open to viruses."
MD5 has viruses? (For what it's worth, the MD5 break concerned forming 2
different plaintexts that had the same MD5 hash, but you have no control over
what the hash value actually is - forming a second plaintext to match a given
plaintext's hash is still believed infeasible). Your best attack would probably
be to attack the "chain of evidence" of the MD5 hash itself, and show that a
different picture, with different MD5, could have replaced the original..
This proves 2 things:
1) The qualifications for "expert witness" are *way* too low.
2) We *really* need to be vigilant in our defense of correct usage of terms.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050811/d627f6b7/attachment.bin
Powered by blists - more mailing lists