Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS426Fall 2010/Lecture 51 Computer Security CS 426 Lecture 5 Cryptography: Cryptographic Hash Function.

Published byGerald Gordon Modified over 9 years ago

Similar presentations

Presentation on theme: "CS426Fall 2010/Lecture 51 Computer Security CS 426 Lecture 5 Cryptography: Cryptographic Hash Function."— Presentation transcript:

1 CS426Fall 2010/Lecture 51 Computer Security CS 426 Lecture 5 Cryptography: Cryptographic Hash Function

2 CS426Fall 2010/Lecture 52 Data Integrity and Source Authentication Encryption does not protect data from modification by another party. Need a way to ensure that data arrives at destination in its original form as sent by the sender and it is coming from an authenticated source.

3 CS426Fall 2010/Lecture 53 Cryptographic Hash Functions A hash function maps a message of an arbitrary length to a m-bit output –output known as the fingerprint or the message digest –if the message digest is transmitted securely, then changes to the message can be detected A hash function is a many-to-one function, so collisions can happen.

4 CS426Fall 2010/Lecture 54 Security Requirements for Cryptographic Hash Functions Given a function h:X  Y, then we say that h is: preimage resistant (one-way): if given y  Y it is computationally infeasible to find a value x  X s.t. h(x) = y 2-nd preimage resistant (weak collision resistant): if given x  X it is computationally infeasible to find a value x’  X, s.t. x’  x and h(x’) = h(x) collision resistant (strong collision resistant): if it is computationally infeasible to find two distinct values x’,x  X, s.t. h(x’) = h(x)

5 CS426Fall 2010/Lecture 55 Uses of hash functions Software integrity –E.g., tripwire Timestamping –How? Message authentication One-time Passwords Digital signature

6 CS426Fall 2010/Lecture 56 Bruteforce Attacks on Hash Functions Attacking one-wayness –Goal: given h:X  Y, y  Y, find x such that h(x)=y –Algorithm: pick a random value x in X, check if h(x)=y, if h(x)=y, returns x; otherwise iterate after failing q iterations, return fail –The average-case success probability is –Let |Y|=2 m, to get  to be close to 0.5, q  2 m-1

7 CS426Fall 2010/Lecture 57 Bruteforce Attacks on Hash Functions Attacking collision resistance –Goal: given h, find x, x’ such that h(x)=h(x’) –Algorithm: pick a random set X 0 of q values in X for each x  X 0, computes y x =h(x) if y x =y x’ for some x’  x then return (x,x’) else fail –The average success probability is –Let |Y|=2 m, to get  to be close to 0.5, q  2 m/2 –This is known as the birthday attack.

8 CS426Fall 2010/Lecture 58 Well Known Hash Functions MD5 –output 128 bits –collision resistance completely broken by researchers in China SHA1 –output 160 bits –no collision found yet, but method exist to find collisions in less than 2^80 –considered insecure for collision resistance –one-wayness still holds SHA2 (SHA-224, SHA-256, SHA-384, SHA-512) –outputs 224, 256, 384, and 512 bits, respectively NIST is having an ongoing competition of new standard hash algorithms, 14 algorithms currently considered

9 CS426Fall 2010/Lecture 59 Choosing the length of Hash outputs Because of the birthday attack, the length of hash outputs in general should double the key length of block ciphers –SHA-224 matches the 112-bit strength of triple-DES –SHA-256, SHA-384, SHA-512 match the new key lengths (128,192,256) in AES

10 CS426Fall 2010/Lecture 510 Readings for This Lecture Wikipedia Cryptographic Hash FunctionCryptographic Hash Function

11 CS426Fall 2010/Lecture 511 Coming Attractions … Cryptography: Message Authentication Code.

Download ppt "CS426Fall 2010/Lecture 51 Computer Security CS 426 Lecture 5 Cryptography: Cryptographic Hash Function."

Similar presentations

Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
CSE331: Introduction to Networks and Security Lecture 21 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 21 Fall 2002.
Chapter 4  Hash Functions 1 Overview  Cryptographic hash functions are functions that: o Map an arbitrary-length (but finite) input to a fixed-size output.

Chapter 4  Hash Functions 1 Overview  Cryptographic hash functions are functions that: o Map an arbitrary-length (but finite) input to a fixed-size output.
CMSC 414 Computer and Network Security Lecture 5 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 5 Jonathan Katz.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.

Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
Hash Functions Nathanael Paul Oct. 9, 2002. Hash Functions: Introduction Cryptographic hash functions –Input – any length –Output – fixed length –H(x)

Hash Functions Nathanael Paul Oct. 9, Hash Functions: Introduction Cryptographic hash functions –Input – any length –Output – fixed length –H(x)
CS526Topic 5: Hash Functions and Message Authentication 1 Computer Security CS 526 Topic 5 Cryptography: Cryptographic Hash Functions And Message Authentication.

CS526Topic 5: Hash Functions and Message Authentication 1 Computer Security CS 526 Topic 5 Cryptography: Cryptographic Hash Functions And Message Authentication.
Cryptography1 CPSC 3730 Cryptography Chapter 11, 12 Message Authentication and Hash Functions.

Cryptography1 CPSC 3730 Cryptography Chapter 11, 12 Message Authentication and Hash Functions.
Cryptography and Network Security Chapter 11 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 11 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
Lecture 4 Cryptographic Tools (cont) modified from slides of Lawrie Brown.

Lecture 4 Cryptographic Tools (cont) modified from slides of Lawrie Brown.
1 Message Authentication and Hash Functions Authentication Requirements Authentication Functions Message Authentication Codes Hash Functions Security of.

1 Message Authentication and Hash Functions Authentication Requirements Authentication Functions Message Authentication Codes Hash Functions Security of.
Network Security Essentials Fifth Edition by William Stallings Fifth Edition by William Stallings.

Network Security Essentials Fifth Edition by William Stallings Fifth Edition by William Stallings.
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
Cryptography and Network Security Chapter 11 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 11 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
Lecture 15 Lecture’s outline Public algorithms (usually) that are each other’s inverse.

Lecture 15 Lecture’s outline Public algorithms (usually) that are each other’s inverse.
Acknowledgements: William Stallings.William Stallings All rights Reserved Session 4 Public Key Cryptography (Part 2) Network Security Essentials Application.

Acknowledgements: William Stallings.William Stallings All rights Reserved Session 4 Public Key Cryptography (Part 2) Network Security Essentials Application.
Chi-Cheng Lin, Winona State University CS 313 Introduction to Computer Networking & Telecommunication Network Security (A Very Brief Introduction)

Chi-Cheng Lin, Winona State University CS 313 Introduction to Computer Networking & Telecommunication Network Security (A Very Brief Introduction)
HASH Functions.

HASH Functions.

Similar presentations

Ads by Google