Originally Posted by
sonatine
really fascinating can i get a synopsis of this?
The reality is that 128 bit, 32-digit hexadecimal on the whole are becoming less secure.
Attacks have been developed that streamlined the hash starting in the 90's, then in the mid 2000's they found a simple Birthday attack could theoretically be used.
Today with modern GPU's a couple hundred million hashes can be searched a second, usually finding a collision in a matter of seconds thus making brute force attacks a lot simpler.
Here is a link with some of the technical explanations.
Combine that with the number of Rainbow tables that have been published on MD5 and you have an easily beat encryption system.
Now when you add in Salt that makes a lot of what I said basically untrue, of course the exception being if someone gets full admin access and has your tables and has access to both your hashes and your salt...then you are pretty much fucked.
SHA-2 is the standard it hasn't been cracked in over 10 years and was created by the NSA (also it's used to encrypt BitCoins).
SHA-3 will most likely be a 512 or 1024 bit encryption and a 64 hexadecimal hash and will be picked in 2012.