• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Is MD5 secure?

W

w0ss

Senior member
From reading many articles I see everyone saying how MD5 has been cracked and it is no longer secure. I searched google and can't find any really technical discussions. Best I can find what really was done to show MD5 is not secure is to have 2 different outputs produce the same MD5 hash. Is that all that was done?
Thanks,
W0ss
 
I posted a link about this over in OS ( search rip MD5) it is secure for now...and replacements are on the way.Actually they are already here they just have to be utilized more.As far a having two inputs produce the same output, this is very bad and is known as a collision.
 
Any encryption can be cracked. From my understanding, its not that MD5 being cracked that's the problem. The problem is that MD5 has flaws which were exposed.
 
Originally posted by: w0ss
From reading many articles I see everyone saying how MD5 has been cracked and it is no longer secure. I searched google and can't find any really technical discussions. Best I can find what really was done to show MD5 is not secure is to have 2 different outputs produce the same MD5 hash. Is that all that was done?
Click to expand...

The recent papers on MD5 have shown how an attacker can create two messages that have the same MD5 hash. Thus an attacker can send one you message (you agree to pay $100), which you happily digitally sign (digital signatures are done on the message hash for security reasons, not the message itself). When the attacker tells the judge that you owe him $500 instead, he presents the message that states that you owe him $500 as proof, since you signed its MD5 hash--it's the same hash as that of the first message you saw.

However, no one can do a preimage attack (yet) on MD5. A preimage attack means that given a hash, you could generate a file that produces that hash. If preimage attacks were possible, all old MD5 hash security would be invalid, but with only collision attacks, we only have to worry about using MD5 hashes in digital signatures and such in the future.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top