How do you determine identity with hash values? Alice could say that svchost.exe... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

jonstewart on Nov 13, 2016 | parent | context | favorite | on: Codehash.db – A public database for software and f...

How do you determine identity with hash values? Alice could say that svchost.exe's hash is deadbeefdeadbeef and Bob could say it's baadcodebaadcode, but, of course, they both could be right because there are umpteen versions of svchost.exe. So, how do you solve the identity problem in order to detect evil?

andrewdavidwong on Nov 14, 2016 [–]

It depends on the entity being hashed, but in the case of software, it's usually a version number. In the case of source code, maybe a git commit hash.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact