If a md5 is one way and supposedly unable to be reversed why do we still have large data breeches with user names and passwords. Are these companies storing passwords in plain text?
Asked
Active
Viewed 175 times
-1
-
2Possible duplicate of [If hashing is one way, why can we decrypt MD5 hashes?](https://security.stackexchange.com/questions/38141/if-hashing-is-one-way-why-can-we-decrypt-md5-hashes), [Methods used to reverse a hash](https://security.stackexchange.com/questions/38166/methods-used-to-reverse-a-hash). – Steffen Ullrich Jan 19 '19 at 09:55
1 Answers
0
MD5 is oneway, but it's considered weak today. The main issue is collision attacks, which has been demonstrated.
However, md5 sums can be computed very fast using specialized hardware and GPUs, in the area of billions of hashes per second, so brute forcing md5 hashes are viable today. In addition, without salts, look up tables works perfectly well.
Password hashing functions should be more resource intensive, and algorithms such as PBKDF2 are much better suited for securely storing passwords.
In short, md5 should not be used for storing passwords, and password storage should employ salts.
vidarlo
- 14,890
- 2
- 43
- 56