[Monetdb-developers] Suggestion to ditch SHA-1, and embrace SHA-2

Stefan de Konink stefan at konink.de
Sat May 9 11:43:14 CEST 2009


Fabian Groffen wrote:
> On 08-05-2009 19:54:38 +0200, Stefan de Konink wrote:
>> As already found in the news SHA-1 is advised to migrated off by 2010. I 
>> would suggest SHA-2 in protocol 9.
> 
> Which one of the SHA-2 family then?  And is it really that important
> given that the store is still protected by a vaultkey?

SHA-256;

Is it important? For obvious reasons you choose not to use SHA-0 or MD5 
for prototol 9. Within that logic SHA-1 is actively being broken; thus I 
would follow an advisory not to incorporate them in new software.


Stefan




More information about the developers-list mailing list