Practical-Cryptography-for-Developers-Book icon indicating copy to clipboard operation
Practical-Cryptography-for-Developers-Book copied to clipboard

Published 20 hours ago verified publisher icon nakov

"Collisions in the cryptographic hash functions are extremely unlikely to happen"?

Open msaindane opened this issue 7 years ago • 1 comments

MD5 and SHA-1 are affected by collisions. Probably modify this sentence.

You do cover this under "Secure Hash Algorithms", so the above statement somehow contradicts.

Reference: https://en.wikipedia.org/wiki/MD5#Collision_vulnerabilities https://security.googleblog.com/2017/02/announcing-first-sha1-collision.html

msaindane avatar Nov 26 '18 17:11 msaindane

A good idea to clarify as it is simply ambiguous.

All hash functions have collisions. Obsolete hash functions are extremely unlikely to have collisions you find "accidentally", while with "current good" ones you are extremely unlikely to find collisions "purposefully".

zatricky avatar Dec 02 '18 13:12 zatricky