>You may view the following link to read more about this issue: >http://www.schneier.com/blog/archives/2005/02/sha1_broken.html > > Hmm, how many hash operations per second is realistic? If you do one every microsecond on a million nodes you still need several years to do 2**69 operations... This of course is much less than the several ten thousend years as it was before and indeed significant for long term signatures, but IMHO still good enough for "everyday life" in e-commerce. But it's already a close call. If someone else can reduce it by a few more bits the algorithm is gone for good! So if this is confirmed we'd better look for new algorithms.