Chatgpt Discussion: in Non-Security Applications, Is Md5 Preferable?

Posted3 months agoActive3 months ago

rowbin

5 points

4 comments

chatgpt.comTechstory

calmmixed

Debate

40/100

CryptographyHash FunctionsMd5

Key topics

Cryptography

Hash Functions

Md5

The discussion revolves around whether MD5 is preferable in non-security applications, with participants weighing its performance against its known security vulnerabilities.

Snapshot generated from the HN discussion

Discussion Activity

Light discussion

First comment

38m

Peak period

2-3h

Avg / period

1.3

Key moments

01Story posted
Oct 10, 2025 at 2:41 AM EDT
3 months ago
Step 01
02First comment
Oct 10, 2025 at 3:20 AM EDT
38m after posting
Step 02
03Peak activity
2 comments in 2-3h
Hottest window of the conversation
Step 03
04Latest activity
Oct 10, 2025 at 5:01 AM EDT
3 months ago
Step 04

Generating AI Summary...

Analyzing up to 500 comments to identify key contributors and discussion patterns

Discussion (4 comments)

Showing 4 comments

raxxorraxor

3 months ago

1 reply

Reads like Chatty was a bit annoyed at you. And it remains the expert, not you!

You kind of have to push LLMs to self-evaluate for good answers, although I am not sure what I would take from this on a technical level. I would use MD5 for non-security applications, I even think you could use it in a security context if you really know how collisions can be created and if that would interfere with your application of it. Better advice is to not do that of course.

Although thinking about it. What are non-security applications of hashes? Database indexing comes to mind, where a collision avoidance is the opposite you want. So what remains? For file integrity I would use SHA-2 something, but I don't see how MD5 would perform worse. Are there more obvious applications?

Perhaps the initial answer isn't really technically correct, but I wouldn't say it is bad advice.

rowbinAuthor

3 months ago

1 reply

Interesting, I'd love to see some more opinions on this. I find the instant "MD5 is broken, don't use it advice" harmful. Not all applications are security related or need absolute highest speed. I actually had use cases in multiple hobby projects, but of course that doesn't there are many.

For example in a distributed event based LAN chat, I used MD5 for an "integrity chain". Every new event id is the hash of the old event id + some random bytes. This way you can easily find the last matching event two systems have in common. Just a random id isn't enough, when two instances integrate an event from a third system, while one of the two added a new event just before that.

No security needed, speed doesn't matter much, it is not designed for high throughput. MD5 seems like a very good choice, because it's easy to work with and can be verified on every system.

raxxorraxor

3 months ago

1 reply

As far as I know and that information is probably way out of date, such an integrity chain on MD5 could be compromised as someone would be able to switch out some important bytes (switch the byte with a toggle on "I do NOT want to buy this very expensive washing machine") while keeping the hash value intact. So using MD5 as a signature check on documents like invoices going through unsafe channels is not safe.

But this is a security case that requires a hostile actor. If the problem is just checking for data integrity or in this case data identity without there being a danger for manipulation, MD5 should perform fine. I don't see a problem with your use case. I am no expert here and there are probably more optimal hashes, but MD5 has the advantage of being widely implemented in all kinds of systems.

Because understanding the intrinsic weakness of hashes isn't trivial, many just recommend "MD5 is broken, don't use it". I think this is just to be on the safe side. Many applications would probably be fine, but because to err on the side of caution is safer, people sometimes say that MD5 is the worst hash function ever conceived.

rowbinAuthor

3 months ago

You are using the security argument again. It is not used in an adverserial context. You are correct, that this is not secure. And messages can be tampered with. But this is not the application. The threat model of the application is that everything happens in a private context without adversaries. The communication is end-to-end encrypted and every participant of the chat has total control and is allowed to change everything in the chat, even messages from other users. So there is no point in protecting again adversaries that have access have to the secure channel, because they are already allowed to do anything, even if the hash were cryptographically secure, they are allowed to change everything. The integrity is only for synchronization, so that every participant can easily verify the state of the event history up to a specific point.

View full discussion on Hacker News

ID: 45535965Type: storyLast synced: 11/17/2025, 11:13:12 AM

Want the full context?

Jump to the original sources

Read the primary article or dive into the live Hacker News thread when you're ready.

Open link View on HN