Just trying to understand the Flickr API setup and how secure it is.
Flickr API
Why MD5 hash and not something like AES?
Hash is strictly a signature, so a one-way hash like MD5 is good enough to use them. If there is a collision (unlikely, but possible), they will simply intercept.
You don't need to make it more complicated than it should be.