top | item 30870927 (no title) droffel | 3 years ago The dataset for hashed credit card numbers is small enough that it can be easily represented in a static lookup table, or brute forced. discuss order hn newest giaour|3 years ago Brute forced by a human voice on a phone call? You must talk quickly. NavinF|3 years ago He almost certainly meant that sha256(card number) can be bruteforced to figure out what card number was hashed. 10^12*256 bits is only 29 TiB.So providing a hashed card number to a potential scammer is just as bad as providing the card number. load replies (1)
giaour|3 years ago Brute forced by a human voice on a phone call? You must talk quickly. NavinF|3 years ago He almost certainly meant that sha256(card number) can be bruteforced to figure out what card number was hashed. 10^12*256 bits is only 29 TiB.So providing a hashed card number to a potential scammer is just as bad as providing the card number. load replies (1)
NavinF|3 years ago He almost certainly meant that sha256(card number) can be bruteforced to figure out what card number was hashed. 10^12*256 bits is only 29 TiB.So providing a hashed card number to a potential scammer is just as bad as providing the card number. load replies (1)
giaour|3 years ago
NavinF|3 years ago
So providing a hashed card number to a potential scammer is just as bad as providing the card number.