Title | | » | Update audit log to use SHA-256 or better |
Assigned To | | » | ritach |
Type | | » | Todo |
Area | | » | Skyline |
Priority | | » | 3 |
Milestone | | » | 21.1 |
I was hoping this would happen along with the fix to change all of the hashes to a new scheme which protects against duplication, but I apparently didn't make that clear to everyone. This issue was brought up during review of the original paper that we chose to use SHA-1. Since we are already changing every hash in the audit log between 20.2 and 21.1, we should also do this now, switching to SHA-256 or -512 or some best modern SHA variant.