[ossec-dev] [Bug 52] New: Proposal to use a hash more secure

[ossec-bugzilla@xxxxxxxxxxxxxxxxxxxxxxxxxxx]

http://www.ossec.net/bugs/show_bug.cgi?id=52

           Summary: Proposal to use a hash more secure
           Product: OSSEC
           Version: 1.3
          Platform: PC
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P1
         Component: ossec core
        AssignedTo: ossec-dev@xxxxxxxxx
        ReportedBy: jonas.esp@xxxxxxxxxxxxxx


Using straight-up MD5 or SHA-1 is not recommended, even with a salt.
Salt values mitigate one basic attack. Adaptive hashing mitigates a
more important one.

http://home.gwu.edu/~khenry/CSci381/AlternativeHashFunctions.pdf

As alternative I suggest *Tiger*. It's secure, and faster than SHA-1
as you can check here:
http://www.cryptopp.com/benchmarks.html

Else could be used RIPEMD-160, the default hash on Sanhain.


-- 
Configure bugmail: http://www.ossec.net/bugs/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.