It’s been a raucous few months in crypto circles.
In a staid, mathematical world long accustomed to incremental changes, new developments are coming as fast as Chrome browser updates.
I’m not sure what’s behind the breaks, but crypto cracking suddenly seems to have accelerated. Here’s a quick roundup of what’s been going down — and advice for those of you still relying on the SHA-1 hash algorithm.[ Build and deploy an effective line of defense against corporate intruders with InfoWorld’s Encryption Deep Dive PDF expert guide.
Download it today! | Stay up to date on the latest security developments with InfoWorld’s Security newsletter. ]
First of all, researchers recently revealed that 512-bit RSA keys can be broken in four hours for $75. Yes, 512-bit RSA keys have been known to be unusably weak for a long time, but the researchers found that nearly 7 percent of websites and more than 10 percent of email servers still use them. (Even bleeding-edge DNSSec adopters work with them.) What has changed? Anyone can rent a slice of cloud computer time, throw in some GPUs, and break the keys for less than what you might pay to check two pieces of luggage at the airport.To read this article in full or to leave a comment, please click here