Does the MD5CryptoServiceProvider hash differ depending on where it is run?

  • Thread starter Thread starter Bill Fuller
  • Start date Start date
B

Bill Fuller

If a password makes use of a MD5CryptoServiceProvider hash for encryption,
will this hash be different if it is generated on a different server? For
example encrypting and decrupting on an application farm?
 
Bill Fuller said:
If a password makes use of a MD5CryptoServiceProvider hash for encryption,
will this hash be different if it is generated on a different server? For
example encrypting and decrupting on an application farm?
Click to expand...

It shouldn't be, no. MD5 is a well-specified standard for how to create
a hash from a given input stream; it should give the same answer
regardless of OS, implementation language, data source type etc.
 
Bill said:
If a password makes use of a MD5CryptoServiceProvider hash for encryption,
will this hash be different if it is generated on a different server? For
example encrypting and decrupting on an application farm?
Click to expand...

No.

But you should use a site specific or even better a username
specific salt in the hashing.

Oh - and use SHA-256 instead of MD5 as well.

Arne
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Adding MD5CryptoServiceProvider hash to an XMLSerializer.Serialize 2
System.Security.Cryptography.CryptographicException; bug in .NET 1.1 ? 8
Trouble using MD5 and SHA1 digests 2
Getting password for encryption without storing it in the memory. 5
MD5 Hash - Converting Result From Byte[] Back To String 7
HELP -- ASCIIEncoding Problem 4
C# Equivalent of C++ MD5 Algorith 6
MD5CryptoServiceProvider class 2

Back
Top