Menu
Possible Duplicate:
AppStore approval and md5
When developing iPhone or iPad apps and submitting to the app store they ask whether the app "contains encryption"? For example if using HTTPS then you need to get an ERN. Makes sense.
However, if an app uses unencrypted HTTP but transmits an MD5 hash of the users password, would that be considered "encryption"?
An MD5 is a one way hashing function. The source data is not recoverable from the hashed data so I'm just not sure whether it's technically considered "encryption" or not?
309
Meanwhile, MD5 is a secure hash algorithm and a cryptographic hash function that can detect some data corruption but is primarily intended for the secure encryption of data that is being transmitted and the verification of digital certificates.
When you download an app from the App Store, Apple injects a special 4196 byte long header into the signed binary encrypted with the public key associated with your iTunes account.
Unfortunately, MD5 has been cryptographically broken and considered insecure. For this reason, it should not be used for anything. Instead, developers should switch to the Secure Hash Algorithm or a Symmetric Cryptographic Algorithm.
Its main purpose is to verify that a file has been unaltered. Instead of confirming that two sets of data are identical by comparing the raw data, MD5 does this by producing a checksum on both sets and then comparing the checksums to verify that they're the same.
No, MD5 is not encryption, as encryption must be reversible. MD5 is a hashing algorithm.
123
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
