ronny.haryan.to

Icon

Print: $9.50 — Online: free

Jun 11, 2005

MD5 Collision, Again

Another MD5 collision has been found. They provide two files as a proof of concept. These are practical, not theoretical, real-life (looking) files.

 ronny@mambo:~/m$ ls -l
 total 8
 -rw-r--r--  1 ronny users 2029 Jun 11 00:20 letter_of_rec.ps
 -rw-r--r--  1 ronny users 2029 Jun 11 00:20 order.ps
 ronny@mambo:~/m$ diff letter_of_rec.ps order.ps
 Files letter_of_rec.ps and order.ps differ
 ronny@mambo:~/m$ md5sum letter_of_rec.ps order.ps
 a25f7f0b29ee0b3968c860738533a4b9  letter_of_rec.ps
 a25f7f0b29ee0b3968c860738533a4b9  order.ps

Should we start considering replacing or even combining MD5 usage with “stronger” alternatives like SHA or Tiger? Any others?

(via Bruce Schneier)

Category: Security

Tagged:

3 Responses

  1. doeljoni says:
    11 Jun 2005 at 04:28

    cmiiw,
    ‘benernya 2 file itu isinya beda jauh, tul gak Ron ?

  2. ronny says:
    11 Jun 2005 at 04:31

    Iya, jauh banget. Coba liat aja pake postscript viewer.

  3. Dyonisius Dony says:
    18 Jun 2005 at 02:39

    SHA-1 juga udah dibroken sama Chinese Professor Xiaoyun Wang (Shandong Uni)

    http://www.schneier.com/blog/archives/2005/02/cryptanalysis_o.html

About

Ronny Haryanto is a technology addict/chef wannabe living in beautiful Melbourne, Australia.

Read more…

Follow Me on Twitter

Follow @ronny on Twitter where I post much more often than my blog.