Just a Theory

By David E. Wheeler

Posts about Passwords

Which Digest Should I Use?

With the recent release of MD5 collision code, I’m reading that it’s long since time that MD5 was dropped from applications. But it seems that SHA-1 isn’t well-thought of anymore, either. So what should Perl programmers use now, instead? Digest::Whirlpool? Digest::SHA2? Digest::Tiger? Digest::Haval256? A combination of these? Something else? I mainly used MD5 for hashing passwords. What’s the best choice for that use? For other uses?

Looking for the comments? Try the old layout.