问题
Is there is a way to override the MD5 functionality provided by MD5CryptoServiceProvider to make it FIPS validated? This is because I would like to keep the logic used in the application and not modifying MD5 for another hashing algorithm that might cause an impact further down the road.
回答1:
As far as I know, MD5 is not a FIPS approved algorithm, and therefore any application that depends on it is likely out of compliance.
I suggest either using SHA1CryptoServiceProvider if you need your application to provide FIPS validated cryptography, or using the Bouncy Castle cryptography library (which does not honor the Windows FIPS policy setting) if your application either will not need to be FIPS-validated or uses MD5 for some non-security-related purpose.
来源:https://stackoverflow.com/questions/8407611/override-md5-to-make-it-fips-validated