3 Sep
2025
3 Sep
'25
1:53 p.m.
On Wed, Sep 3, 2025 at 9:39 AM Tom Beecher <beecher@beecher.cc> wrote:
Brent-
Yes, IOS is storing the MD5 of the binary key data, not the base64 version. I had that wrong. Still a distinction without a difference. The preimage problem still exists.
Tom- Preimage is not the only attack for MD5. It's a prerequisite if you are *only* sending exactly the attacker key on the wire. Merkle–Damgård checksum algorithms have quite a few fun options in this space if you aren't restricted with a fixed length.
And as you've been clearly ramping up the condescension in the last few messages, I don't feel inclined to debate this with you any further. Take care.
If you're going to be confident, don't be confidently wrong. Best of luck.