Cryptographic Hash Functions

Questions and Answers

Which of the following strategies is most effective at mitigating brute-force attacks on password hashes?

• Implementing salting and key stretching. (correct)
• Using a longer key for encryption.
• Employing a complex password policy.
• Regularly updating the hashing algorithm.

What is the primary goal of a collision attack against a hash function?

• To identify weaknesses in the random number generator.
• To determine the length of the input used to generate the hash.
• To find the original input from a given hash value.
• To find two distinct inputs that produce the same hash output. (correct)

Why are deprecated hash functions like MD5 and SHA-1 no longer recommended for use in secure systems?

• They are computationally expensive and slow to execute.
• They have known vulnerabilities making them susceptible to collision attacks. (correct)
• They produce hash values that are too short for modern security needs.
• They are not compatible with newer operating systems and hardware.

A security engineer discovers that an application is vulnerable to a length extension attack. Which of the following actions would be most effective in mitigating this vulnerability?

Switching to a hash function that is not vulnerable to length extension attacks. (B)

In the context of password security, what is the purpose of 'salting'?

To add a random value to each password before hashing. (C)

Which of the following is NOT a primary design goal of cryptographic hash functions?

Reversible transformation to retrieve the original input. (B)

A company wants to ensure the integrity of large data files stored in the cloud. Which application of hash functions would be most suitable?

Data integrity verification. (C)

What property of cryptographic hash functions ensures that a specific output cannot be used to derive the original input?

Preimage resistance. (C)

Which of the following correctly orders hash algorithms from shortest to longest hash value?

MD5, SHA-1, SHA-256 (D)

Why are hash collisions a concern in cryptographic applications?

Collisions can allow unauthorized data modification without detection. (D)

Given two different documents, Document A and Document B, which of the following scenarios would indicate a failure of collision resistance in the used hash function?

Document A and Document B produce the same hash value. (C)

A system administrator discovers a rainbow table. What is the primary security risk associated with this?

Compromised password security through reverse lookups. (C)

Which security property of hash functions is most relevant to preventing rainbow table attacks?

Preimage resistance. (D)

Flashcards

Salt

A random value added to each password before hashing. It makes rainbow tables less effective.

Key Stretching

Applying multiple iterations of a hash function to slow down password cracking attempts.

Brute-Force Attack

Trying all possible inputs until a match is found for a given hash value.

Dictionary Attack

Using a list of common passwords and their corresponding hash values to find a match.

Collision Attack

Finding two different inputs that produce the same hash value.

Hash Functions

Algorithms that convert arbitrary-size input to fixed-size output (hash).

Data Integrity Verification

Verifying data hasn't been altered during storage/transmission.

Password Storage (Hashing)

Storing password hashes instead of plain text for security.

Digital Signatures

Creating a unique 'fingerprint' of a document for authentication.

Deterministic Hash Function

Same input always produces the same hash value.

Preimage Resistance

Infeasible to find an input that generates a specific hash value.

Hash Collision

Two different inputs producing the same hash value.

Rainbow Tables

Precomputed tables of hash values and corresponding plain text inputs, used to crack passwords.

Study Notes

• Cryptographic hash functions are algorithms that take an arbitrarily sized input and produce a fixed size output called a hash.
• These functions are designed to be one-way, meaning it's computationally infeasible to reverse the process and find the original input from the hash value.
• They are also collision-resistant, making it very difficult to find two different inputs that produce the same hash value.

Applications of Hash Functions

• Data integrity verification ensures that data has not been altered during storage or transmission.
• Password storage stores password hashes instead of plain text passwords, enhancing security.
• Digital signatures creates a unique fingerprint of a document or message for authentication.
• Data indexing quickly locates data elements in a large dataset.
• Cryptocurrencies forms the backbone of blockchain technology by linking blocks of transactions.

Properties of Cryptographic Hash Functions

• Deterministic: The same input always produces the same hash value.
• Computationally efficient: Fast to compute the hash value for any given input.
• Preimage resistance: Infeasible to find an input that produces a specific hash value.
• Second preimage resistance: Infeasible to find a different input that produces the same hash value as a given input.
• Collision resistance: Infeasible to find two different inputs that produce the same hash value.

Common Hash Algorithms

• Message Digest 5 (MD5) produces a 128-bit hash value and was once a widely used hash function.
• Secure Hash Algorithm 1 (SHA-1) is a hash function that produces a 160-bit hash value.
• Secure Hash Algorithm 2 (SHA-2) is a family of hash functions including SHA-256 (256-bit hash value) and SHA-512 (512-bit hash value).
• Secure Hash Algorithm 3 (SHA-3) represents the latest standard in hash function design, offering improved security features.

Hash Collisions

• A hash collision occurs when two different inputs produce the same hash value.
• Although hash functions are designed to be collision-resistant, collisions are theoretically possible due to the finite size of the hash output.
• The probability of finding a collision depends on both the size of the hash value and the number of inputs hashed.
• Birthday paradox illustrates that the probability of finding a collision increases faster than expected as the number of inputs grows

Rainbow Tables

• Rainbow tables are Precomputed tables of hash values and their corresponding plain text inputs.
• Rainbow tables are used to reverse hash functions and recover passwords.
• Salt, a random value added to each password before hashing, makes rainbow tables less effective.
• Key stretching, applying multiple iterations of a hash function, slows down password cracking attempts.

Attacks on Hash Functions

• Brute-force attack involves attempting all possible inputs until a match is found for a given hash value.
• Dictionary attack uses a list of common passwords and their corresponding hash values to find a match.
• Collision attack involves finding two different inputs that produce the same hash value.
• Length extension attack exploits weaknesses in some hash functions to calculate the hash of a modified message.

Choosing a Hash Function

• Select hash functions that are widely recognized and have undergone extensive security analysis.
• Take into account the size of the hash output and the level of security required for the application.
• Avoid using deprecated hash functions like MD5 and SHA-1, as they have known security weaknesses.
• Stay informed with the latest research on hash function security, and opt for algorithms that are resistant to known attacks.