Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security and Management 11. Cryptographic Hash Functions Chih-Hung Wang Fall 2011 1.

Published byNaomi Harvey Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Security and Management 11. Cryptographic Hash Functions Chih-Hung Wang Fall 2011 1."— Presentation transcript:

1 Information Security and Management 11. Cryptographic Hash Functions Chih-Hung Wang Fall 2011 1

2 Definition ▫A hash function accepts a variable-size message M as input and produces a fixed-size hash code H(M) ▫Sometime called a message digest ▫Hash Algorithm  MD5  RFC 1321 developed by Ron Rivist at MIT  Secure Hash Algorithm (SHA)  FIPS PUB 180 in 1993 (NIST) 180-1 in 1995  FISP: Federal Information Processing Standard 2 Hash Function

3 3 Plaintext M Message Digest Hash value H(M)

4  H can be applied to a block of data of any size  H produces a fixed-length output  H(x) is relatively easy to compute for any given x, making both hardware and software implementations practical  For any given code h, it is computationally infeasible to find x such that H(x)=h. This is sometimes referred to in the literature as the one-way property  For any given block x, it is computationally infeasible to find y  x with H(y)=H(x). This is sometimes referred to as weak collision resistance  It is computationally infeasible to find any pair (x,y) such that H(x)=H(y). This is sometimes referred to as strong collision resistance. 4 Requirements of Hash

5 5 m1m1 m2m2 H(m 1 ) H(m 2 ) It is difficult to find m1 and m2 (m1  m2) such that H(m1)=H(m2)

6 6 Basic Use of Hash (A)

7 7 Basic Use of Hash (B)

8 8 Basic Use of Hash (C)

9 For a code of length n ▫One-way: 2 n ▫Weak collision resistance: 2 n ▫Strong collision resistance: 2 n/2 9 Security of Hash Functions

10 MD5 SHA 10 The Famous Hash Functions

11 1.Append padding bits: pad message so its length is 448 mod 512 2.Append length: append a 64-bit length value to message 3.Initialize MD buffer: initialise 5-word (160-bit) buffer (A,B,C,D,E) to (67452301,efcdab89,98badcfe,10325476,c3d2e1f0) 4.Process message in 512-bit (16-word) blocks: ▫expand 16 words into 80 words by mixing & shifting ▫use 4 rounds of 20 bit operations on message block & buffer ▫add output to input to form new buffer value 5.Output: output hash value is the final buffer value 11 SHA-1 Logic

12 Each round has 20 steps which replaces the 5 buffer words thus: (A,B,C,D,E) <-(E+f(t,B,C,D)+S 5 (A)+Wt+Kt),A,S 30 (B),C,D) A,B,C,D,E refer to the 5 words of the buffer t is the step number, 0  t  79 f(t,B,C,D) is nonlinear function for round W t is derived from the message block K t is an additive constant value S k is circular left shift by k bits 12 SHA-1 Compression Function

13 13 SHA-1 Compression Function

14 14 SHA-1 Compression Function

15 15 Function Summarized

16 80-word Input Sequence W t =S 1 (W t-16  W t-14  W t-8  W t-3 ) 16

17 SHA 512 17

18 SHA 512(a single 1024- bit block) 18

19 SHA 512 (Elementary operation) 19

20 SHA 512 (Creation of 80-word input sequence) 20

21 Brute force attack for SHA-1 is harder (160 vs 128 bits for MD5) SHA-1 is not vulnerable to any known attacks (compared to MD4/5) ?? (Speed) SHA-1 is a little slower than MD5 (80 vs 64 steps) Both designed is simple and compact SHA-1 uses big endian scheme (MD5 uses little endian scheme) 21 Comparison of SHA-1 and MD5

22 NIST have issued a revision FIPS 180-2 and adds 3 additional hash algorithms: SHA-256, SHA-384, SHA-512. Designed for compatibility with increased security provided by the AES cipher Structure & detail are similar to SHA-1 and hence analysis should be similar. 22 Revised Secure Hash Standard

23 23 Comparison of SHA Properties

Download ppt "Information Security and Management 11. Cryptographic Hash Functions Chih-Hung Wang Fall 2011 1."

Similar presentations

Hashes and Message Digests

Hashes and Message Digests
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Outline Project 1 Hash functions and its application on security Modern cryptographic hash functions and message digest –MD5 –SHA.

Outline Project 1 Hash functions and its application on security Modern cryptographic hash functions and message digest –MD5 –SHA.
PIITMadhumita Chatterjee Security 1 Hashes and Message Digests.

PIITMadhumita Chatterjee Security 1 Hashes and Message Digests.
Hash and MAC Algorithms

Hash and MAC Algorithms
Announcements: 1. HW7 due next Tuesday. 2. Inauguration today! Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman,

Announcements: 1. HW7 due next Tuesday. 2. Inauguration today! Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman,
Hash functions a hash function produces a fingerprint of some file/message/data h = H(M)  condenses a variable-length message M  to a fixed-sized fingerprint.

Hash functions a hash function produces a fingerprint of some file/message/data h = H(M)  condenses a variable-length message M  to a fixed-sized fingerprint.
Announcements:Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman, ElGamal Hash Functions and SHA-1 Hash Functions.

Announcements:Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman, ElGamal Hash Functions and SHA-1 Hash Functions.
Hashes and Message Digest Hash is also called message digest One-way function: d=h(m) but no h’(d)=m –Cannot find the message given a digest Cannot find.

Hashes and Message Digest Hash is also called message digest One-way function: d=h(m) but no h’(d)=m –Cannot find the message given a digest Cannot find.
Cryptography and Network Security Hash Algorithms.

Cryptography and Network Security Hash Algorithms.
Cryptography and Network Security (CS435) Part Ten (Hash and MAC algorithms)

Cryptography and Network Security (CS435) Part Ten (Hash and MAC algorithms)
Chapter 4  Hash Functions 1 Overview  Cryptographic hash functions are functions that: o Map an arbitrary-length (but finite) input to a fixed-size output.

Chapter 4  Hash Functions 1 Overview  Cryptographic hash functions are functions that: o Map an arbitrary-length (but finite) input to a fixed-size output.
Information Security and Management 11

Information Security and Management 11
SHA (secure hash algorithm) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.

SHA (secure hash algorithm) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.

Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
COM 5336 Cryptography Lecture 9 Hash, MAC, HMAC

COM 5336 Cryptography Lecture 9 Hash, MAC, HMAC
Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
1 Pertemuan 09 Hash and Message Digest Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 09 Hash and Message Digest Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

Similar presentations

Ads by Google