发表新帖
发表新帖

Is there an alternate hashing algorithm to MD5 for FIPS-enabled systems?

前端 未结
关注
3 1779
北海茫月
北海茫月 2020-12-09 16:46

Whenever I try to use MD5 on a Windows XP machine that has FIPS enabled, I am getting a System.InvalidOperationException.

Is there an alternate algorith

相关标签:
3条回答
  • 忘了有多久
    2020-12-09 17:13

    You can use MD5Digest from Org.BouncyCastle.Crypto.Digests

    MD5Digest hash = new MD5Digest();

public byte[] Hash(byte[] input)
{
     hash.BlockUpdate(input, 0, input.Length);
     byte[] result = new byte[hash.GetDigestSize()];
     hash.DoFinal(result, 0);
     return result;
}

public string Hash(string input)
{
     var data = System.Text.Encoding.Unicode.GetBytes(input);
     hash.BlockUpdate(data, 0, data.Length);
     byte[] result = new byte[hash.GetDigestSize()];
     hash.DoFinal(result, 0);

     return Hex.ToHexString(result).ToUpper();
}
    0 讨论(0)
  • 醉酒成梦
    2020-12-09 17:22

    When you enforce FIPS compliance in the Windows security policy settings, you're asserting that you are only going to use FIPS-certified encryption and hashing algorithms. MD5 is not one of these approved hashing algorithms, and that's why the exception is being thrown.

    The workaround is simple: choose a different hashing algorithm. The .NET Framework provides plenty of other options in the System.Security.Cryptography namespace. Select one of the SHA family of algorithms. I can't imagine any reason you would have to use MD5 as opposed to one of the alternatives.

    0 讨论(0)
  • 野的像风
    2020-12-09 17:27

    MD5 is not FIPS compliant. You can use instead of the MD5 one of the following hashing algorithms:

    • HMACSHA1
    • MACTripleDES
    • SHA1CryptoServiceProvider
    0 讨论(0)
 看不清?
提交回复
热议问题