MD5 collision risk
Suppose someone comes up with 2 different data files that would collide in their MD5 hash. What is the chance that for a given arbitrary string, these 2 different data files appended to that string (e.g. the string is first) will also collide in their MD5 hash?
Where this fails: Code:
diff file1 file2 Code:
cat file1 | md5sum Code:
cat filex file1 | md5sum Code:
cat file1 filex | md5sum Code:
cat filex file1 filex | md5sum Code:
cat filex file1 filey | md5sum |
Or you could use both MD5 and SHA1 sums
|
Quote:
|
If the additional string is at the end and the original files were a multiple of 512 bits then the collision will still exist.
If you are aiming to use additional (secret) information for message authentication then use HMAC http://www.ietf.org/rfc/rfc2104.txt |
Quote:
http://www.mathstat.dal.ca/~selinger/md5collision/ It's got two distinct strings that yield the same MD5 sum. You could try appending a 512-bit string to each and see if the collision happens. |
All times are GMT -5. The time now is 03:16 PM. |