Tweet
Originally posted by jntesteves
View Post
https://crypto.stackexchange.com/que...-3-and-sha-256
-
They share little besides the name. Certain classes of attacks are not possible with sha3.
https://crypto.stackexchange.com/que...-3-and-sha-256 -
Exactly, hence we use HMAC and all is good and well. This use case can potentially be better served by SHA-3, but even that is not a no-brainer, you should consider your priorities carefully. But where you absolutely don't need resistance to length extension attacks, as is the case with git as documented in the link adler187 posted above [1], SHA-2 offers the following advantages over SHA-3, which might be important to some projects:Originally posted by oleid View Post- Proven by time. SHA-2 has been used in the wild for a while and never broken. SHA-3 is new and less tried;
- Widely available. There are SHA-2 libraries in every platform going back many years;
- Many independent implementations;
- Better performance.
[1] https://github.com/git/git/blob/mast....txt#L603-L634Comment
-
I personally think that's why BLAKE2 would be a better choice than SHA3.Originally posted by jntesteves View Post
Comment
Comment