A well-known real-world case is SHA-1. In 2017, Google and CWI published two PDFs with different contents but identical SHA-1 hashes, demonstrating that “matching SHA-1” no longer implies “the same file.”

 A hash collision is a phenomenon where two different pieces of data produce the same hash value. A common misconception is to imagine only “accidental matches,” but once an attacker can intentionally generate collisions, the assumptions behind tamper detection and digital signatures start to break. For example, if you decide “it’s safe because the hash matches what the distributor published,” a collision-prone algorithm can let a different file be engineered to yield the same value, turning verification into a formality.

A well-known real-world case is SHA-1. In 2017, Google and CWI published two PDFs with different contents but identical SHA-1 hashes, demonstrating that “matching SHA-1” no longer implies “the same file.” In 2020, researchers went further and demonstrated chosen-prefix collisions, which allow collisions while preserving arbitrary chosen prefixes. That is far more troublesome in contexts like signatures and identity, because it undermines the shortcut idea that “if the hashes match, the documents are the same.” This is not just a lab trick; it’s a warning that systems can fail whenever they rely on hash equality as proof of sameness.

MD5 has similar issues. In 2008, chosen-prefix collisions were used to show that a “rogue CA certificate” could be created, effectively producing something that looks like a trusted certificate authority. Because certificates sit at the root of trust for HTTPS and many other systems, collisions are not merely about deduplication; they connect directly to impersonation and tampering of distributed software. In 2012, the Flame malware incident was also discussed in connection with certificate forgery involving collision attacks, reinforcing how these weaknesses can translate into real harm.

There is an important line to draw. In settings like hash tables or cache keys, where an attacker cannot freely choose inputs, collisions are often mainly a performance concern. But in security-sensitive settings where an attacker can shape the input, such as public files, signed artifacts, update packages, and certificates, collisions become a direct security problem.

The conclusion is straightforward: do not use MD5 or SHA-1 for security purposes (signatures, tamper detection, certificates). Move to SHA-256 or stronger. Also, audit your systems for designs that treat “hash match” as evidence of correctness: release pipelines, CI, legacy archive checks, and internal distribution flows. Where needed, replace them with signature verification or layered validation. A practical step you can do today is to search your scripts and configuration for “md5” or “sha1” and replace them with SHA-256 or SHA-512. If migration is hard, start by banning them. This is not optional.

Comments

Post a Comment

Popular posts from this blog

go ahead baby, now on sale!!

Image
The lyrics mean this. I came up with it when my precious daughter started to live alone. Oka I don’t care what happens to me If my wish can come true If we could go back to the days we first met Even so, I know You’re probably thinking of them Forgetting even the days spent by my side These days of watching over you My heart feels like it’s tearing apart “Forgive me,” I just gaze at you Just like this, baby Always, baby The memories of last night Just go somewhere, baby, someday Just go somewhere, baby, someday Just go somewhere, baby, someday Someday, baby I don’t mind Verse 2 Then let’s go somewhere The future isn’t so bad Blessings for everything that’s yet to come Casual words on an ordinary day Even the boring daily grind Everything we chose in the city will rewrite it all The one I’m staring at now You’ll be the last for me Even if I try to hold on, I’m just trembling Just like this, baby Always, baby The certain memories Just go somewhere, baby, someday Just go somewhe...
Read more

Japan Jazz Anthology Select: Jazz of the SP Era

Image
Saint Louis Blues — W.C. Handy’s iconic early jazz–blues standard, often played with a sturdy two-beat dance feel. Learn more Pagan Love Song — A Tin Pan Alley favorite by Arthur Freed & Nacio Herb Brown, frequently sweetened into a foxtrot. Learn more When It’s Lamp Lighting Time in the Valley — A sentimental waltz-time country ballad that crossed over into light-music repertoire. Learn more Chinrai-bushi — A salon-tinged popular song often adapted by prewar dance bands in Japan. Learn more Kiso-bushi — A graceful folk song from the Kiso region; arrangements highlight its lilting, modal flavor. Learn more Yagi-bushi — A lively festival min’yō from Gunma/Tochigi; its call-and-response suits a buoyant swing. Learn more Yasugi-bushi — A humorous Shimane folk song (famous for the “dojo-sukui” dance) that also works as a jaunty foxtrot. Learn more Taiko-sen (“Boat on Lake Tai”) — A Chinese popular tune widely played in Japan; often given a gentle...
Read more
Generative Art Libraries and Resources 1. Metaball Libraries and Samples metaballs-js (npm) : A lightweight WebGL-based metaball rendering library. You can freely specify the number of balls, colors, and speed. Paper.js Metaball Demo : The official Paper.js example showing a “viscous” effect via contour calculations on the canvas. Varun.ca Metaballs : An HTML5 canvas/JavaScript demo of metaballs with the algorithm’s formulas explained. Three.js Metaball Slime : A 3D metaball example using Marching Cubes and the Rapier physics engine. Codrops “Drawing 2D Metaballs with WebGL2” : A tutorial for drawing 2D metaballs by hand in WebGL2. 2. Symmetry (Rorschach) Generative Art Symmetry Drawer by aferriss : An editor built on p5.js for drawing with left-right symmetry—perfect for experimenting with ideas. “ : A simple sample that generates patterns by pairing square cells symmetrically. Medium: From Syntax to Symmetry (p5.js) : ...
Read more