[Pasig-discuss] Risks of encryption & compression built into storage options?
David Rosenthal
dshr at stanford.edu
Fri Mar 17 17:17:24 EDT 2017
On 03/17/2017 10:37 AM, Goethals, Andrea wrote:
> Regarding “> With that sort of error then you have two copies of
> supposedly correct information and no way of telling which is
> correct.” – I think it’s important to maintain fixity information
> (e.g. SHA/MD5, etc.) values outside of the storage systems as well so
> that you can be sure that any copy of your content hasn’t changed. It
> can also come in very handy to check the completeness of transfers,
> e.g. when migrating to new storage.
Its not quite that simple. See:
http://blog.dshr.org/2017/03/sha1-is-dead.html
David.
More information about the Pasig-discuss
mailing list