From Wikipedia, the free encyclopedia
Jump to: navigation, search
WikiProject Cryptography / Computer science   
WikiProject icon This article is within the scope of WikiProject Cryptography, a collaborative effort to improve the coverage of Cryptography on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
 ???  This article has not yet received a rating on the quality scale.
 ???  This article has not yet received a rating on the importance scale.
Taskforce icon
This article is supported by WikiProject Computer science.


Info about the 1991 paper that broke MD4 was found at: RedWolf 05:37, Apr 10, 2004 (UTC)

Semi-recent events have rendered this statement inaccurate: "Many of the subsequent message digest designs based on it remain secure, in the sense that no effective attack has been published against them." Perhaps it's time to edit this? I'd do it now, but sleep deprivation is getting to me -_- --PacoBell 15:43, 4 November 2005 (UTC)

I replaced it, but I'm sure it could be worded better. — Matt Crypto 18:36, 4 November 2005 (UTC)

I'm too clumsy to edit this citation from the NTLM page into here...someone else please do it and remove that ugly citation needed....Seriously, why add a citation needed, when it's so easy to jsut find the source.... (talk) 19:59, 4 October 2010 (UTC)

Doesn't the reference claim that NTLM uses RC4 and MD5 (i.e. by linking to the RFC of MD5)? Where does it mention MD4? (talk) 02:48, 5 October 2010 (UTC)
Oh, I see. MD4 is used for a key derivation from the password. (talk) 02:59, 5 October 2010 (UTC)

The fourth in a series[edit]

Is it really the fourth? I've heard of MD2, MD4 and MD5 but never of MD1 and MD3.

  • Yep. MD (not "MD1") is proprietary, and was never published. MD3 was superseded by MD4 before its publication (not sure why the "3" wasn't reused, so to speak). We should add this, but I'm not sure where, as it is obviously also relevant to the MD2 and MD5 articles. What do we do in such cases? Use transclusion? —Gennaro Prota•Talk 23:13, 18 November 2006 (UTC)
I think we just cut and paste. Transclusion is normally used only for things like side-boxes and the like, whereas main text is in-line. — Matt Crypto 16:34, 19 November 2006 (UTC)
I have a source for MD3, namely Schneier's Applied Cryptography 2nd ed p. 446, "MD3 is yet another hash function designed by Ron Rivest. It had several flaws and never really made it out of the laboratory, although a description was recently published in [1335]." (So real cryptographers work in laboratories, it seems!) — Matt Crypto 17:43, 19 November 2006 (UTC)
Thanks for the pointer :-) I'm really curious, could you please explicit the [1335]? As to transclusion, I'm sure you know the evils of duplicating information (in Wikipedia, or any other information system). If the current practice is copy-and-paste then we have a bad current practice. —Gennaro Prota•Talk 15:13, 21 November 2006 (UTC)
1335 comes out as "MD2, MD4, MD5, SHA and other hash functions. M.J.B. Robshaw. RSA Laboratories Technical Report TR-101. V 3.0 July 1994." The problem with transclusion of text fragments is that introduces complexity, and we want to keep editing as simple as possible. An alternative is to consolidate the information into an overview article of some kind -- we could have, hypothetically, a "MD hash function series" article. Probably Ronald Rivest would suffice, though. — Matt Crypto 16:49, 21 November 2006 (UTC)