Y
Hacker News
new
|
ask
|
show
|
jobs
by
dward
2351 days ago
HMACs do not require collision resistance from the underlying hash to provide secure message authentication. HMAC-MD5 is still considered "secure", although that doesn't mean you should use it.
http://cseweb.ucsd.edu/~mihir/papers/hmac-new.pdf