Some related posts from Technorati and Google.

  Everything Burns | The backstroke of the West: Rather than a fundamental weakness in MD5, what is really being exploited here is a flaw in the use of the message authentication code, because what is being signed is not the semantic content of the message, but the message plus lots of stuff having to do with the presentation of the message (or maybe not: I'm guessing that the researchers were merely inserting dead code, or introns into the Postscript documents to manipulate their hash values). (via Cosmos)

Barry Briggs : Common Sense for Uncommon Times: MD5 of course is the foundation of one of the digital-signature algorithms. The idea is that you can perform this mathematical operation on a document and create a "digest" (a number). (via Cosmos)

 [Volubis.com] InfoSec News Blog: Encryption Archives: Recent reports that the United States had broken codes used by the Iranian intelligence service have intrigued experts on cryptology because a modern cipher should be unbreakable. Four leading British experts told BBC News Online that the story, if true, points to an operating failure by the Iranians or a backdoor way in by the National Security Agency (NSA) - the American electronic intelligence organisation.

 [Coldstream.ca] Bruce Schneier's Blog | coldstream: Two researchers from the Institute for Cryptology and IT-Security have generated PostScript files with identical MD5-sums but entirely different (but meaningful!) content.

Reflected tags on Technorati: Blog, Encryption, Global Security Watch