I think you are mixing preimage and collisions. preimage: H(x, y) = z, find x, y collision: H(w, x) = H(y, z), find w, x, y, z We can't do preimages on MD5 but we can collide MD5 and thus HMAC-MD5. The "HMAC-MD5 is still safe" is only if the key is unknown.
-
-
That was creating two messages that have the same hash: H(x) = H(y). Not given a hash and finding a message that matches it: H(x) = y.
-
Yes, finding two messages with the same hash is what allows someone to claim that they have the input. You should sleep on this, or let it sit with you.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
+ salt)." if you don't know