body { -ms-overflow-style: scrollbar; overflow-y: scroll; overscroll-behavior-y: none; } .errorContainer { background-color: #FFF; color: #0F1419; max-width: 600px; margin: 0 auto; padding: 10%; font-family: Helvetica, sans-serif; font-size: 16px; } .errorButton { margin: 3em 0; } .errorButton a { background: #1DA1F2; border-radius: 2.5em; color: white; padding: 1em 2em; text-decoration: none; } .errorButton a:hover, .errorButton a:focus { background: rgb(26, 145, 218); } .errorFooter { color: #657786; font-size: 80%; line-height: 1.5; padding: 1em 0; } .errorFooter a, .errorFooter a:visited { color: #657786; text-decoration: none; padding-right: 1em; } .errorFooter a:hover, .errorFooter a:active { text-decoration: underline; } #placeholder, #react-root { display: none !important; } body { background-color: #FFF !important; }

JavaScript is not available.

We’ve detected that JavaScript is disabled in this browser. Please enable JavaScript or switch to a supported browser to continue using twitter.com. You can see a list of supported browsers in our Help Center.

Terms of Service Privacy Policy Cookie Policy Imprint Ads info © 2023 Twitter, Inc.

Conversation

Tony "Abolish ICE" Arcieri

Know what uses SHA1 all over the place? Telegram (thanks for the reminder

)

11:07 PM · Feb 23, 2017

David Wachtfogel

Replying to

@matthew_d_green

Collision attacks are relevant only if the attacker controls preimage; not the case for most usages of SHA1

1

Tony "Abolish ICE" Arcieri

Replying to

@matthew_d_green

and

the two PhD cryptographers you mentioned and myself are well aware... however:

Quote Tweet

Tony "Abolish ICE" Arcieri

The best part was @Telegram talking about how their SHA1 use isn't collidable, then talk about hashing 1.5GB files twitter.com/aprilmpls/stat

1

Show replies

Telegram Messenger

Replying to

and

Where we use it and the way we use it, collisions don't give you anything: core.telegram.org/techfaq#q-why-

1

3

Show replies

Replying to

and

;)

Quote Tweet

- ... - Telegram :p shattered.io

Replying to

and

welp. Time to switch to Signal...

1

You’re unable to view this Tweet because this account owner limits who can view their Tweets. Learn more

Tony "Abolish ICE" Arcieri

Replying to

yup

This Tweet is from a suspended account. Learn more

Tony "Abolish ICE" Arcieri

Replying to

@matthew_d_green

and

SHA-256 is fine (along with SHA-512, SHA3, BLAKE2, and many others)

Mikhail Razborov

@mikhailrazboro

Replying to

and

even in boot process