Return-Path: 
 <dev-return-50181-apmail-hbase-dev-archive=hbase.apache.org@hbase.apache.org>
X-Original-To: apmail-hbase-dev-archive@www.apache.org
Delivered-To: apmail-hbase-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 4A01910715
	for <apmail-hbase-dev-archive@www.apache.org>;
 Wed, 18 Feb 2015 19:54:39 +0000 (UTC)
Received: (qmail 94920 invoked by uid 500); 18 Feb 2015 19:54:36 -0000
Delivered-To: apmail-hbase-dev-archive@hbase.apache.org
Received: (qmail 94827 invoked by uid 500); 18 Feb 2015 19:54:36 -0000
Mailing-List: contact dev-help@hbase.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@hbase.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@hbase.apache.org>
List-Post: <mailto:dev@hbase.apache.org>
List-Id: <dev.hbase.apache.org>
Reply-To: dev@hbase.apache.org
Delivered-To: mailing list dev@hbase.apache.org
Received: (qmail 94805 invoked by uid 99); 18 Feb 2015 19:54:36 -0000
Received: from mail-relay.apache.org (HELO mail-relay.apache.org)
 (140.211.11.15)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 18 Feb 2015 19:54:36 +0000
Received: from mail-la0-f53.google.com (mail-la0-f53.google.com
 [209.85.215.53])
	by mail-relay.apache.org (ASF Mail Server at mail-relay.apache.org) with
 ESMTPSA id 8CE091A025E;
	Wed, 18 Feb 2015 19:54:35 +0000 (UTC)
Received: by labgq15 with SMTP id gq15so3515549lab.6;
        Wed, 18 Feb 2015 11:54:34 -0800 (PST)
X-Received: by 10.152.43.51 with SMTP id t19mr817884lal.73.1424289274115; Wed,
 18 Feb 2015 11:54:34 -0800 (PST)
MIME-Version: 1.0
Received: by 10.25.134.84 with HTTP; Wed, 18 Feb 2015 11:53:53 -0800 (PST)
In-Reply-To: 
 <DC40EEB1454F0C488C2FE9F5E3D1520333D28E1A@szxeml556-mbx.china.huawei.com>
References: 
 <DC40EEB1454F0C488C2FE9F5E3D1520333D28E1A@szxeml556-mbx.china.huawei.com>
From: Andrew Purtell <apurtell@apache.org>
Date: Wed, 18 Feb 2015 11:53:53 -0800
Message-ID: 
 <CA+RK=_CBkQ8QX--BCEYxHZSKMvr_7ZLgPGLHFChypHKgzQw=Nw@mail.gmail.com>
Subject: Re: Suggestion for using SHA-512 instead of MD5
To: "dev@hbase.apache.org" <dev@hbase.apache.org>
Cc: "user@hbase.apache.org" <user@hbase.apache.org>
Content-Type: multipart/alternative; boundary=001a11c235783dbb32050f6230d9

--001a11c235783dbb32050f6230d9
Content-Type: text/plain; charset=UTF-8

We simply use MD5 to get a hash where collision probability is very small.
There's no security implication, we don't use MD5 here to protect anything
in a cryptographic sense. In fact we could probably use a faster algorithm
with weaker collision properties for this, but MD5 is ok.

On Tue, Feb 17, 2015 at 11:57 PM, ashutosh jindal <
ashutosh.jindal@huawei.com> wrote:

> Hi All,
>
> I have seen that in hbase MD5 is used to generate hash e.g. to create
> region name . In deployments MD5 is not considered good because of security
> issues related to it. Can we use SHA-512 or make it configurable . Please
> give your views.
>
> Regards,
> Ashutosh Jindal
>
>


-- 
Best regards,

   - Andy

Problems worthy of attack prove their worth by hitting back. - Piet Hein
(via Tom White)

--001a11c235783dbb32050f6230d9--