proalan
May 17th, 2007, 01:39 AM
just how secure is md5?
I've not touched upon the subject since my university days in 2002 but even at that time there were already discussions about replicating MD5 hashes, bruteforce attacks.
MD5 is widely used to verify downloads including ubuntu cds, packages, programs, email and this forums authentication system amongst many things.
Rainbow tables are just a google search away, and cracking can take as little as 30 mins.
for more information http://en.wikipedia.org/wiki/MD5
Is it time to standardize another encryption method e.g. bring sha-1 to common usage?
I've not touched upon the subject since my university days in 2002 but even at that time there were already discussions about replicating MD5 hashes, bruteforce attacks.
MD5 is widely used to verify downloads including ubuntu cds, packages, programs, email and this forums authentication system amongst many things.
Rainbow tables are just a google search away, and cracking can take as little as 30 mins.
for more information http://en.wikipedia.org/wiki/MD5
Is it time to standardize another encryption method e.g. bring sha-1 to common usage?