Slashdot Mirror

← Back to Stories (view on slashdot.org)

MD5 To Be Considered Harmful Someday

Posted by michael on from the house-built-on-sand dept.

Effugas writes "I've completed an applied security analysis (pdf) of MD5 given Xiaoyun Wang et al's collision attack (covered here and here). From an applied perspective, the attack itself is pretty limited -- essentially, we can create 'doppelganger' blocks (my term) anywhere inside a file that may be swapped out, one for another, without altering the final MD5 hash. This lets us create any number of binary-inequal files with the same md5sum. But MD5 uses an appendable cascade construction -- in other words, if you happen to find yourself with two files that MD5 to the same hash, an arbitrary payload can be applied to both files and they'll still have the same hash. Wang released the two files needed (but not the collision finder itself). A tool, Stripwire, demonstrates the use of colliding datasets to create two executable packages with wildly different behavior but the same MD5 hash. The faults discovered are problematic but not yet fatal; developers (particularly of P2P software) who claim they'd like advance notice that their systems will fail should take note."

13 of 401 comments (clear)

  1. Two files with the same md5 hash? by Anonymous Coward · · Score: 5, Funny

    I can only hope I live that long.

    1. Re:Two files with the same md5 hash? by UTPinky · · Score: 2, Funny

      drice@pinky:/tmp$ echo "Hello World" > file1
      drice@pinky:/tmp$ echo "Hello World" > file2
      drice@pinky:/tmp$ md5sum file1
      e59ff97941044f85df5297e1c302d260 file1
      drice@pinky:/tmp$ md5sum file2
      e59ff97941044f85df5297e1c302d260 file2

      Cheap, I know...

      --
      I'm only paranoid because everyone is against me...
  2. MP5 harmful? No way! by October_30th · · Score: 5, Funny

    Aha! So it was MD5 and not MP5...

    --
    The owls are not what they seem
  3. In english by ValuJet · · Score: 4, Funny

    Is there a translator from ultra-nerd to english?

    1. Re:In english by Anonymous Coward · · Score: 1, Funny

      Is there a translator from ultra-nerd to english?

      A computer thingy has an owie.

  4. Good analysis by overbyj · · Score: 5, Funny

    By examining the MD5 hash using a sophisticated Fourier schema followed by deconvolution with a bit binary-inequal collision analysis, it is quite obvious I have no freaking clue what this stuff is about.

    I am glad somebody does.

    --
    No trees were harmed in the composition of this; however, numerous electrons were inconvenienced.
    1. Re:Good analysis by Wanker · · Score: 3, Funny

      Hibbert: Homer, I'm afraid you'll have to undergo a coronary bypass operation.
      Homer: Say it in English, Doc.
      Hibbert: You're going to need open heart surgery.
      Homer: Spare me your medical mumbo jumbo.
      Hibbert: We're going to cut you open and tinker with your ticker.
      Homer: Could you dumb it down a shade?

      http://www.tvtome.com/tvtome/servlet/GuidePageServ let/showid-146/epid-1355/

  5. This is almost appropriate... by freeze128 · · Score: 3, Funny

    If your cursor finds a menu item followed by a dash,
    And your double-clicking icon puts your window in the trash,
    And your data is corrupted 'cause the index doesn't hash,
    Then your situation's hopeless and your system's gonna crash!

  6. If I Had A Million Terabytes... by Tackhead · · Score: 5, Funny
    If I had a million terabytes of storage, y'know what I'd do?

    Two files with the same MD5 hash at once. Aaw yeah.

    1. Re:If I Had A Million Terabytes... by wren337 · · Score: 2, Funny

      Well, the type of files that would double up on a dude like me do.

  7. I studied different hashes.. by Anonymous Coward · · Score: 1, Funny

    I found out the darker and moister it was, the more powerful it was. Of course any form of hash was much stronger then regular leaf pot and you could get far more reusable resin when you were done with the pipe.

  8. Re:You are missing the point. by jjon · · Score: 3, Funny
    [... complex plan snipped ...] Now, I am able to sign code as if I were Microsoft,

    You can just ask Verisign for a certificate in the name of Microsoft, and they'll give you one. Much simpler.

    It's happened in the past.

  9. MD6 by Danathar · · Score: 2, Funny

    That's OK..just invent MD6!