Ironically, the reason SHA2 isn't reachable by the attacks that broke SHA1 is th... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tptacek 4 months ago \| parent \| context \| favorite \| on: Learn How to Break AES Ironically, the reason SHA2 isn't reachable by the attacks that broke SHA1 is the simplicity of the SHA1 message schedule, which was also by design due to its hashing application.

cakealert 4 months ago [–]

SHA1 has a sloppy key/msg schedule. They could have just done a random permutation of words and been safe - it would have even been cheaper than what the ended up doing. Such as what BLAKE does.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact