ProHoster > Блог > labaran intanet > NIST ta cire SHA-1 hashing algorithm daga ƙayyadaddun ta

NIST ta cire SHA-1 hashing algorithm daga ƙayyadaddun ta

Cibiyar Ƙididdiga da Fasaha ta Amurka (NIST) ta ayyana hashing algorithm wanda ya daina aiki, mara lafiya, kuma ba a ba da shawarar amfani da shi ba. An shirya kawar da amfani da SHA-1 zuwa Disamba 31, 2030 kuma gaba ɗaya canzawa zuwa mafi amintattun SHA-2 da SHA-3 algorithms.

Nan da Disamba 31, 2030, duk ƙayyadaddun bayanai da ƙa'idodi na NIST na yanzu ba za su ƙara yin amfani da SHA-1 ba. Yin ritaya na ƙayyadaddun SHA-1 za a bayyana a cikin sabon ma'auni na tarayya FIPS 180-5. Bugu da ƙari, za a yi canje-canje ga ƙayyadaddun ƙayyadaddun bayanai, kamar SP 800-131A, daga abin da za a cire batun SHA-1. Na'urori masu ƙira waɗanda ke tallafawa SHA-1 ba za su iya wuce binciken na gaba ta NIST ba kuma isar da su ga hukumomin gwamnatin Amurka ba zai yiwu ba (ana bayar da takaddun shaida na tsawon shekaru biyar kawai, bayan haka ana buƙatar dubawa na biyu).

An haɓaka SHA-1 a cikin 1995 kuma an amince da shi azaman ma'aunin sarrafa bayanan tarayya (FIPS 180-1), yana ba da damar amfani da wannan algorithm a cikin hukumomin gwamnatin Amurka. A cikin 2005, an tabbatar da yiwuwar kai hari kan SHA-1. A cikin 2017, an nuna harin karo na farko mai amfani tare da prefix ɗin da aka bayar don SHA-1, yana ba da damar saitin bayanai daban-daban guda biyu don zaɓar ƙari, abin da aka makala wanda zai haifar da karo da samuwar zanta iri ɗaya (misali. don takardun guda biyu masu wanzuwa yana yiwuwa a ƙididdige ƙari biyu, kuma idan an haɗa ɗaya zuwa takarda ta farko, ɗayan kuma zuwa na biyu, sakamakon SHA-1 hashes na waɗannan fayilolin zai zama iri ɗaya).

A cikin 2019, an inganta hanyar gano karon juna sosai kuma an rage farashin kai harin zuwa dubun dubatan daloli. A cikin 2020, an nuna harin aiki don ƙirƙirar sa hannun dijital na PGP da GnuPG na bogi. Tun daga 2011, an soke SHA-1 don amfani a cikin sa hannu na dijital, kuma a cikin 2017, duk manyan masu binciken gidan yanar gizo sun daina tallafawa takaddun shaida ta amfani da SHA-1 hashing algorithm. Koyaya, ana ci gaba da amfani da SHA-1 don lissafin kuɗi, kuma akwai fiye da 2200 ƙwararrun ƙirar ƙira da ɗakunan karatu tare da tallafin SHA-1 a cikin bayanan NIST.

source: budenet.ru

Add a comment