View Single Post
  #3   (View Single Post)  
Old 6th May 2009
s2scott's Avatar
s2scott s2scott is offline
Package Pilot
 
Join Date: May 2008
Location: Toronto, Ontario Canada
Posts: 198
Default

In context, the move to SHA256 from SHA-1 (128) is probably intended to decrease the likelihood of a hash collision, readers may find the following link of interest on approved crypto strengths and crypto-material-at-key-strength retention periods.

http://www.cse-cst.gc.ca/documents/publications/itsa-asti/itsa11d-eng.pdf

Accordingly, SHA-1, as a crypto component, is disallowed as of 2008/12 by the above Canadian govt standards.

It's interesting to see what algorithms and key-strengths are deprecating in 2010.

/S
__________________
Never argue with an idiot. They will bring you down to their level and beat you with experience.
Reply With Quote