Get in http://boinc.iaik.tugraz.at/sha1_coll_search/ while the gettings good ... :icon_lol: ... New SHA Collision Search Project ... :icon_santa:

I joined and created the team.

Vaughan, let me know when you join and I will transfer ownership.

Nice catch Poorboy! I'm in! :)

Somehow the first thing it came to mind when I saw this project was "HashClash round 2?"... :lol:

It's pretty cool.. I hardly ever get to create the team!!!

Another one joined... thanks PoorBoy!

All aboard the BOINC train :icon_wink:

Chuff chuff chuff - SHA. No work to crunch yet. :(

Evil-Dragon is User Of The Day!!!

Vaughan, you now hold the torch!!

I am in too. This project supports Windows and Linux ! :blob3:

Woot, finally got onto a new project.

Woot, finally got onto a new project.

:icon_lol: ... Good for you, trouble is there's no work available right now, but thats like a lot of the Projects I get in. There's either no work or very limited work when they first start out, but if you don't have an Account when they do start giving out work they shut off the Account Creation most of the time because of the unexpected Server problems ... :icon_rolleyes:

SHA 1 Collision Search is a research project that uses Internet-connected computers to do research in XXX.

So what is this project really about ?

SHA 1 Collision Search is a research project that uses Internet-connected computers to do research in XXX.

So what is this project really about ?

Other than Sucking up more of your CPU Cycles I don't have a clue ... :icon_lol: ... None of the Pages work at the Site to find out anything else about the project...A Google Search brings up little info either other than some sort of Collision (Of what ?) ...

So what is this project really about ?

I found this article on the web quiet interesting and informative. http://www.schneier.com/blog/archives/2005/02/sha1_broken.html Kind of gives you an idea of what they are talking about is security related in the computer field. This next link goes into greater detail of explaining:
http://www.schneier.com/blog/archives/2005/02/cryptanalysis_o.html

My Personal View makes this project seem more like Hashclash and or the MD-5 Crack then anything else. :icon_neutral:

http://amdusers.com/forum/member.php?u=429http://img.photobucket.com/albums/v322/Beerknurd/australia-03.gif

In Nflight's signature....

"That sure is a nice Flag ! I like the color scheme, I would love to know what country I am flying?"

I bet AMDave or Vaughan could tell you... :lol: This may have been addressed in another forum... If so, SORRY!!!

AUSSIE AUSSIE AUSSIE!!! OI OI OI!!!!!

http://amdusers.com/forum/member.php?u=429http://img.photobucket.com/albums/v322/Beerknurd/australia-03.gif

In Nflight's signature....

"That sure is a nice Flag ! I like the color scheme, I would love to know what country I am flying?"

I bet AMDave or Vaughan could tell you... :lol: This may have been addressed in another forum... If so, SORRY!!!

AUSSIE AUSSIE AUSSIE!!! OI OI OI!!!!!
I LOVE AUSTRALIA! (Australia is defined by the beautiful singing twin that go under the name The Veronicas hahaha)

My exam period just started and I'm extremely tempted to order a ticket and run :icon_lol: (MADave, if I cant get in with the Origliassos, I'm heading your way :icon_lol:)

Hi guys this project owns :).Its for finding insecurities in the hashing algorithm sha-1.The fun t hing is we can try and help take down something created to hide information and yet not get in trouble for it :)

As we have discussed in the past, not many of us are interested in assisting some shady organization with cracking security algorithims that are designed to protect our banking and other information. I can tell you for a fact that I'm not.

As we have discussed in the past, not many of us are interested in assisting some shady organization with cracking security algorithims that are designed to protect our banking and other information. I can tell you for a fact that I'm not.

X2
-----------------------

As we have discussed in the past, not many of us are interested in assisting some shady organization with cracking security algorithms that are designed to protect our banking and other information. I can tell you for a fact that I'm not.

I have read as much as I can about this project, there is nothing spoken that you mention about a shady organization using this development tool to break and use against us. They intern are determined to make sure that this code of SHA-1 is really as secure as it is supposed to be. I have read the latest article dated October 24, 2007 which states the two different universities participating in this effort. Not once is any misnomers mentioned stating these are people are attempting to take advantage of the rest of the world with breaking this code. I do not know where your insight about shady organization came from but from my readings this afternoon, nothing is near your disbelief. I would rather find the hash here on line then to have someone do it themselves and use it against us later without our knowledge.
http://www.isgtw.org/?pid=1000711
Once the SHA-1 Hash is found; (maybe found), the rest of the world will alter there secure habits effectively and quickly. You will not be put at risk.

Once the SHA-1 Hash is found; (maybe found), the rest of the world will alter there secure habits effectively and quickly. You will not be put at risk.

After reading your ref, and then finding a couple more, I follow what is going on. One would think though that all that related info should be accessible from the project page on the respective boinc project web page. The SHA-1 is going to be replaced anyway according to the references. So this is different than the earlier project that Steve Lux was referencing.

The Secure Hash Algorithm SHA-1 was long suspected of being weak, and was proven so in 2005 when Chinese researchers found a way to break it with about 2000 times less effort than brute force. So what good does it do to search for collisions when it is already known to be weak?

Smart security people have already switched to better hash algorithms. So the only use I can think of for finding SHA-1 collisions is to attack older systems that still use SHA-1. Or to attack old messages that have been archived.

Hash algorithms are generally used to prevent (undetected) modification of messages, as compared to encryption preventing (unauthorized) reading of messages. If it takes 5 or 20 years to decrypt a message, chances are good that the message is no longer secret by then. But if hashing authenticates some historical evidence, and breaking the hash function provides a way to tamper with the evidence, that could be bad, I think, because there is no time limit in most cases.

In any case, I would not help a foreign country with a cryptographic research project. There might be some exceptions where I knew enough about what they were doing, but for people with no cryptographic expertise, I would advise against it.

http://www.boincstats.com/signature/user_1242941.gif

In any case, I would not help a foreign country with a cryptographic research project. There might be some exceptions where I knew enough about what they were doing, but for people with no cryptographic expertise, I would advise against it.

http://www.boincstats.com/signature/user_1242941.gif


I agree 100%

My new Phenom 9500 is allowing me to crunch like 200 units a day o.o

I kinda have to agree that the project is a little scary, but its great for stressing my new chip heh.