For us who don't know better, could you explain why MD5 or SHA1 are ok in an HMA... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		azinman2 on June 2, 2017 \| parent \| context \| favorite \| on: Maybe we shouldn't skip SHA-3 For us who don't know better, could you explain why MD5 or SHA1 are ok in an HMAC context?

tptacek on June 2, 2017 [–]

Because a collision in MD5 doesn't give you a second preimage of an MD5 hash.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact