From Wikipedia, the free encyclopedia
Operating systemcross-platform

HashClash was a volunteer computing project running on the Berkeley Open Infrastructure for Network Computing (BOINC) software platform to find collisions in the MD5 hash algorithm.[1] It was based at Department of Mathematics and Computer Science at the Eindhoven University of Technology, and Marc Stevens initiated the project as part of his master's degree thesis.

The project ended after Stevens defended his M.Sc. thesis in June 2007.[2] However, SHA1 was added later, and the code repository was ported to git in 2017.[3]

The project was used to create a rogue certificate authority certificate in 2009.[4]

See also[edit]


  1. ^ "HashClash". 2007-10-16. Archived from the original on 2007-10-16. Retrieved 2022-08-28.
  2. ^ Stevens's thesis "On Collisions for MD5" is available for download Archived 2017-05-17 at the Wayback Machine.
  3. ^ "Old-SVN-hashclash/Downloads at master · cr-marcstevens/Old-SVN-hashclash". GitHub. Archived from the original on 2022-09-05. Retrieved 2019-05-29.
  4. ^ Marc Stevens, Alexander Sotirov, Jacob Appelbaum, Arjen Lenstra, David Molnar, Dag Arne Osvik and Benne de Weger, "Short Chosen-Prefix Collisions for MD5 and the Creation of a Rogue CA Certificate", August 2009.

External links[edit]