覆盖MD5使其经过FIPS验证? [英] Override MD5 to make it FIPS validated?

问题描述

是否有一种方法可以覆盖由 MD5CryptoServiceProvider 提供的MD5功能，以使其经过FIPS验证?这是因为我想保留应用程序中使用的逻辑，而不是为另一种哈希算法修改MD5，这可能会对以后的应用产生影响.

Is there is a way to override the MD5 functionality provided by MD5CryptoServiceProvider to make it FIPS validated? This is because I would like to keep the logic used in the application and not modifying MD5 for another hashing algorithm that might cause an impact further down the road.

推荐答案

据我所知，MD5不是FIPS认可的算法，因此依赖它的任何应用程序都可能不合规.

As far as I know, MD5 is not a FIPS approved algorithm, and therefore any application that depends on it is likely out of compliance.

如果您需要应用程序提供经过FIPS验证的加密，则建议使用 SHA1CryptoServiceProvider ，或者使用

I suggest either using SHA1CryptoServiceProvider if you need your application to provide FIPS validated cryptography, or using the Bouncy Castle cryptography library (which does not honor the Windows FIPS policy setting) if your application either will not need to be FIPS-validated or uses MD5 for some non-security-related purpose.

这篇关于覆盖MD5使其经过FIPS验证?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！