Question 1

What is the difference between hashing and encryption?

Accepted Answer

Hashing is a one-way function that produces a fixed-size output and cannot be reversed. Encryption is reversible with the correct key. Hashing is used to verify data integrity, while encryption protects data confidentiality.

Question 2

Is MD5 still safe to use?

Accepted Answer

Not for security purposes. MD5 is cryptographically broken and vulnerable to collision attacks. It is still acceptable for non-security uses like checksums for file integrity, but should never be used for passwords or digital signatures.

Question 3

Why do different inputs sometimes produce the same hash?

Accepted Answer

These are called collisions. Since hash functions map infinite possible inputs to a fixed-size output, collisions are theoretically inevitable. Secure algorithms like SHA-256 make collisions practically impossible to find intentionally.

Question 4

What hash algorithm should I use for passwords?

Accepted Answer

Never use raw SHA-256 or MD5 for passwords. Use purpose-built password hashing functions like bcrypt, scrypt, or Argon2, which are designed to be slow and resist brute-force attacks.

Algorithm	Output Size	Status
`MD5`	128-bit (32 hex chars)	Broken - collision attacks demonstrated
`SHA-1`	160-bit (40 hex chars)	Deprecated - practical collision found in 2017
`SHA-256`	256-bit (64 hex chars)	Recommended - widely used, no known weaknesses
`SHA-384`	384-bit (96 hex chars)	Secure - truncated SHA-512, extra margin
`SHA-512`	512-bit (128 hex chars)	Secure - larger output, faster on 64-bit systems

Property	Hashing	Encryption
Direction	One-way (irreversible)	Two-way (reversible with key)
Key required	No	Yes
Output size	Fixed length	Variable (depends on input)
Purpose	Integrity verification	Confidentiality protection

About Cryptographic Hashing

What is Hashing?

Hash Algorithms Compared

Hashing vs Encryption