Home › B.Tech Cyber Security › cybersecurity › Cryptography › Which hash algorithm is considered DEPRECATED / …
Which hash algorithm is considered DEPRECATED / WEAK and should NOT be used for new applications?
ASHA-256
BSHA-3
CBLAKE2
DMD5
Answer & Solution
Correct answer: D. MD5
1. MD5: PRACTICAL COLLISION ATTACKS exist since 2005 (Wang et al.). Two different inputs can be made to produce the same MD5 hash. Broken for security purposes.
2. SHA-1: also broken — Google demonstrated a practical collision in 2017 (SHAttered attack).
3. MODERN choices: SHA-256, SHA-3, BLAKE2, BLAKE3.
4. MD5 is still acceptable for NON-SECURITY uses (checksums against accidental corruption), but never for signatures, password hashing, or integrity verification against adversaries.
5. Options A, B, C are all considered secure.
_Source: Boneh & Shoup, §8 (Hash functions) + NIST FIPS 180-4._
Related questions
RSA encryption with PKCS#1 v1.5 padding is now consideredA SALT in password hashing isFORWARD SECRECY in TLS meansA CERTIFICATE AUTHORITY (CA) in PKI does what?TLS (Transport Layer Security) uses a HYBRID encryption scheme. Why?An HMAC (Hash-based Message Authentication Code) providesWhich block cipher mode is INSECURE and should NEVER be used because it leaks PATTERNS in DIFFIE-HELLMAN key exchange allows two parties to