2010-08-16 14:00:39 UTC
reading Schneier's blog and in
one of his posts in 2005 he says that we should move away from SHA-1.
"Don't use SHA-1 for anything new, and start moving away from it as soon as
To SHA-256, probably."
It appears that DriveCrypt Plus Pack is using SHA-1 at 160bits, Schneier was
SHA-256 in 2005, that is five years ago.
I am getting cold feet about SHA-160, I wonder if it is paranoia or a
justified worry, I have very important
data encrypted that would seriously destroy my life and business if it falls
in the wrong hands.
PGP whole disk encryption has been using SHA-2 (512 bits) for quite some time
PS: Yes I know about Truecrypt, let's save the comments on that, I needed a