From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <6fd1d56822dbcdd02ffbdd873fc1a838@tombob.com> To: 9fans@cse.psu.edu Subject: Re: [9fans] thoughs about venti+fossil Date: Thu, 6 Mar 2008 17:09:10 +0000 From: Robert Raschke In-Reply-To: <68a46edfa8e40c2fc74da101e3dbe24b@terzarima.net> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Topicbox-Message-UUID: 715ed592-ead3-11e9-9d60-3106f5b1d025 Hi, as far as I understand, there was recently a finding that SHA1 (or MD5, can't remember off the top of my head) is potentially unsafe to be used as a SIGNATURE of a document. This is because somebody managed to CONSTRUCT a text that ended up getting the same hash as another (this is apparently not the easiest thing to do either). And that leads to potential falsification of data while still having a supposedly valid signature. This is completely different to what venti uses hashes for, where the hash is computed on REAL (not constructed) data blocks for indexing purposes. If you manage to go out of your way and construct a block that ends up clashing with an existing hash index, it doesn't matter, because you won't break the existing data with it! I get the impression that the former clouds the understanding of the latter. Robby