On Jul 20, 2005, at 9:15 AM, Steven M. Bellovin wrote:

> In message <8581520D-6EBA-44E7-B311-82EF3155D1D0@shagadelic.org>,  
> Jason Thorpe
> There's a subtle distinction here between a *safety* algorithm and a
> *security* algorithm.  The former deals with naturally-occuring
> failures; the latter deals with enemy action.  The two are not the
> same.  If I (and Jason) correctly understand Matt's question, we're
> talking about a safety algorithm.  MD5 is fine for that.  CRC32 is
> probably not, though -- the size of the kernel is such that the
> probability of an undetected error is too high.

Right.  Steven and I are definitely on the same page here...

-- thorpej