I read something in Applied Cryptography that sounds a lot like this. They point out some problem with current hash algorithms, and that it can be fixed by running the data through twice. Since that requires the entire string to be buffered, the next best thing is to hash twice (H(H(data)). Problem is, that cuts the security in half, so you should use SHA-256.