From mboxrd@z Thu Jan 1 00:00:00 1970 Date: Mon, 16 Aug 2004 14:40:11 -1000 From: Tim Newsham To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu> In-Reply-To: Message-ID: References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: [9fans] venti question Topicbox-Message-UUID: d48f440e-eacd-11e9-9e20-41e7f4b1d025 This "paper" implies feasible attacks against SHA-0: http://eprint.iacr.org/2004/199.pdf and there are (unconfirmed) rumors that the attack has been successfully extended to SHA-1. I was wondering what the implications of this would be to venti. It would seem that it may open the door to malicious corruption of venti data. Of the top of my head -- if you could anticipate some data that will be stored in the near future and have enough time to calculate a collision for it, you could submit bogus data with the same hash. When the data is stored later, it will be discarded because venti will already think it has the data. Tim N.