73

When you see "Database must be encrypted with SHA1 or SHA2" in software requirements specification....

Comments
  • 5
    Error: 'deprecated.'
  • 22
    The word 'encrypted' in combination with two hashing algorithms in one sentence 😵 *shivers*
  • 14
    Ah, perfect! What an amazing encryption + compression mechanism it is, turning terabytes of data into bits. Such a marvel.

    Try doing this prank if it'd be ok, "encrypt" it with SHA1/2 and keep it as backup, copy the actual db and keep it safe, remove the db from production and watch em panic as they try to "decrypt" the backup
  • 4
    So they don't need to access the data on the db. That is an odd requirment.
  • 5
    @justasithlord Well theoretically speaking you could bruteforce the data back 😂
  • 1
    Goodbye world, you wont be missed -_-
  • 1
    @lotd SHA1 being deprecated isn't the biggest problem here...
  • 0
    @SHA-256 I know, I just returned the most likely reasonable response :p
  • 0
    You are a student, right?
  • 0
    Can it be used for verification to check if the database has been modified?

    Or to prove the two copy of database is the same if they compare the hash?
Add Comment