Y
Hacker News
new
|
ask
|
show
|
jobs
by
8organicbits
313 days ago
That's great analysis. As you call out in the post, the 2^64 value is used to attack SHA256-128 (SHA256 truncated to 128 bits). NIST recommends at least SHA-224, which makes sense given your conclusions.