From: Jonathan Nieder <jrnieder@gmail.com>
To: "Ævar Arnfjörð Bjarmason" <avarab@gmail.com>
Cc: git@vger.kernel.org, Junio C Hamano <gitster@pobox.com>,
Linus Torvalds <torvalds@linux-foundation.org>,
Edward Thomson <ethomson@edwardthomson.com>,
"brian m . carlson" <sandals@crustytoothpaste.net>,
Johannes Schindelin <Johannes.Schindelin@gmx.de>,
demerphq <demerphq@gmail.com>,
Brandon Williams <bmwill@google.com>,
Derrick Stolee <stolee@gmail.com>
Subject: Re: Questions about the hash function transition
Date: Thu, 23 Aug 2018 19:51:23 -0700 [thread overview]
Message-ID: <20180824025123.GA186259@aiede.svl.corp.google.com> (raw)
In-Reply-To: <878t4xfaes.fsf@evledraar.gmail.com>
Ævar Arnfjörð Bjarmason wrote:
>> Objective
>> ---------
>> Migrate Git from SHA-1 to a stronger hash function.
>
> Should way say "Migrate Git from SHA-1 to SHA-256" here instead?
>
> Maybe it's overly specific, i.e. really we're also describnig how /any/
> hash function transition might happen, but having just read this now
> from start to finish it takes us a really long time to mention (and at
> first, only offhand) that SHA-256 is the new hash.
I answered this question in my other reply, but my answer missed the
point.
I think it would be fine for this to say "Migrate Git from SHA-1 to a
stronger hash function (SHA-256)". More importantly, I think the
Background section should say something about SHA-256 --- e.g. how about
replacing the sentence
SHA-1 still possesses the other properties such as fast object
lookup and safe error checking, but other hash functions are equally
suitable that are believed to be cryptographically secure.
with something about SHA-256?
Rereading the background section, I see some other bits that could be
clarified, too. It has a run-on sentence:
Thus Git has in effect already migrated to a new hash that isn't
SHA-1 and doesn't share its vulnerabilities, its new hash function
just happens to produce exactly the same output for all known
inputs, except two PDFs published by the SHAttered researchers, and
the new implementation (written by those researchers) claims to
detect future cryptanalytic collision attacks.
The "," after vulnerabilities should be a period, ending the sentence.
My understanding is that sha1collisiondetection's safe-hash is meant
to protect against known attacks and that the code is meant to be
adaptable for future attacks of the same kind (by updating the list of
disturbance vectors), but it doesn't claim to guard against future
novel cryptanalysis methods that haven't been published yet.
Thanks,
Jonathan
next prev parent reply other threads:[~2018-08-24 2:51 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-08-23 14:02 Questions about the hash function transition Ævar Arnfjörð Bjarmason
2018-08-23 14:27 ` Junio C Hamano
2018-08-23 15:20 ` Ævar Arnfjörð Bjarmason
2018-08-23 16:13 ` Junio C Hamano
2018-08-24 1:40 ` brian m. carlson
2018-08-24 1:54 ` Jonathan Nieder
2018-08-24 4:47 ` brian m. carlson
2018-08-24 4:52 ` Jonathan Nieder
2018-08-24 1:47 ` Jonathan Nieder
2018-08-28 12:04 ` Johannes Schindelin
2018-08-28 12:49 ` Derrick Stolee
2018-08-28 17:12 ` Jonathan Nieder
2018-08-28 17:11 ` Jonathan Nieder
2018-08-29 13:09 ` Johannes Schindelin
2018-08-29 13:27 ` Derrick Stolee
2018-08-29 14:43 ` Derrick Stolee
2018-08-29 9:13 ` How is the ^{sha256} peel syntax supposed to work? Ævar Arnfjörð Bjarmason
2018-08-29 17:51 ` Stefan Beller
2018-08-29 17:59 ` Jonathan Nieder
2018-08-29 18:34 ` Stefan Beller
2018-08-29 18:41 ` Ævar Arnfjörð Bjarmason
2018-08-29 19:12 ` Jonathan Nieder
2018-08-29 19:37 ` Ævar Arnfjörð Bjarmason
2018-08-29 20:46 ` Jonathan Nieder
2018-08-29 23:45 ` Jeff King
2018-08-29 20:53 ` Junio C Hamano
2018-08-29 21:01 ` Jonathan Nieder
2018-08-29 17:56 ` Jonathan Nieder
2018-08-24 2:51 ` Jonathan Nieder [this message]
2018-08-28 13:50 ` Questions about the hash function transition Ævar Arnfjörð Bjarmason
2018-08-28 14:15 ` Edward Thomson
2018-08-28 15:02 ` Ævar Arnfjörð Bjarmason
2018-08-28 15:45 ` Junio C Hamano
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: http://vger.kernel.org/majordomo-info.html
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180824025123.GA186259@aiede.svl.corp.google.com \
--to=jrnieder@gmail.com \
--cc=Johannes.Schindelin@gmx.de \
--cc=avarab@gmail.com \
--cc=bmwill@google.com \
--cc=demerphq@gmail.com \
--cc=ethomson@edwardthomson.com \
--cc=git@vger.kernel.org \
--cc=gitster@pobox.com \
--cc=sandals@crustytoothpaste.net \
--cc=stolee@gmail.com \
--cc=torvalds@linux-foundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://80x24.org/mirrors/git.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).