nanog mailing list archives

Re: MD5 is slow

From: Saku Ytti via NANOG <nanog () lists nanog org>
Date: Fri, 5 Sep 2025 10:30:15 +0300

There are many hash functions for many needs with very different
design goals over several unrelated metrics.There are intentionally
slow hashes for PW secrets, MD5 and SHA-2 are not such.

I do not accept the argument that MD5 or SHA-2 is a meaningful
contributor when we discuss RTT latencies of network equipment
anywhere. Even if we would accept someone uses SHA2 for ISIS and that
contributes 5ms to the convergence budget, it would be largely
meaningless, as we don't really care about initial convergence time,
and after initial convergence we can convergence for any single fault
prior to it happening, so no work needs to be done at the RE to
forward around the fault at the time it happens.


On Fri, 5 Sept 2025 at 10:22, Vasilenko Eduard via NANOG
<nanog () lists nanog org> wrote:


Hi all,
So many smart people are in the discussion about MD5 ...
I have a temptation to ask: why hash in the first place?!? (does not matter MD5 or SHA-2)
Any hash MUST be slow (by design) to withstand brute force. In the network device case, it is about 5ms for SHA-2 (of 
course, dependent on the control plane processor).
It should be checked on every hop for routing event propagation. Hence, it creates a delay for the event propagation 
that is typically much higher than RTT. When "Packet Design" was alive, they measured 300ms cross-US. A decade later, 
it should be faster, but anyway slow enough.
It is a big part (maybe even the biggest) of the "sub-second" convergence of IGP protocols.
Actually, it greatly undermines the value of ISIS IETF performance tunings: 
https://datatracker.ietf.org/doc/html/rfc9681.

Why do people not use symmetric encryption for networking protocols? Symmetric encryption has a typical latency of 
10s of microseconds.

Of course, it is possible to calculate how much energy would be saved on hash calculations worldwide, but people in 
this group would probably not welcome a green agenda.
And this number would be miserable against bitcoin.
Eduard
_______________________________________________
NANOG mailing list
https://lists.nanog.org/archives/list/nanog () lists nanog org/message/Y677XAJS5DHSXHUZ2DKTXUUN6ESWVVTC/




-- 
  ++ytti
_______________________________________________
NANOG mailing list 
https://lists.nanog.org/archives/list/nanog () lists nanog org/message/47CLP24IJTHDCPC7PTF3EYCGAJ43S57S/

Current thread:

MD5 is slow Vasilenko Eduard via NANOG (Sep 05)
- Re: MD5 is slow Saku Ytti via NANOG (Sep 05)
- Re: MD5 is slow Saku Ytti via NANOG (Sep 05)
  - RE: MD5 is slow Vasilenko Eduard via NANOG (Sep 08)
    - Re: MD5 is slow Saku Ytti via NANOG (Sep 08)
    - RE: MD5 is slow Vasilenko Eduard via NANOG (Sep 09)
    - Re: MD5 is fast nanog--- via NANOG (Sep 08)
    - Re: MD5 is fast Owen DeLong via NANOG (Sep 08)
    - Re: MD5 is fast Saku Ytti via NANOG (Sep 08)
    - Re: MD5 is slow Jay Acuna via NANOG (Sep 08)
    - RE: MD5 is slow Vasilenko Eduard via NANOG (Sep 09)
    - RE: MD5 is slow nanog--- via NANOG (Sep 09)

(Thread continues...)