If I remember right there have been collisions found in SHA1 but none of them have actually been broken. I'm behind on my reading though.
As a whole anything using IPSec should be fine. You're talking about the difference between a 10' steel door and a 12' steel door. Good luck breaking into either one. If you want to break into a system, decrypting L2TP traffic is NOT the first place you should start.
Will Vista also be able to use SHA2 for L2TP? I know SHA2 is in the CNG suite, so I would think it would be able to use it, but I don't know for sure.
I'm just happy that both the kernel and usermode implementations of AES will be FIPS certified in Vista. Currently, only the usermode one is, and EFS uses the kernel mode one. So customers currently need to enable the FIPS GPO which downgrades the algorithm to a FIPS certified 3DES implementation.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.