Network Security: Random Numbers and Hashing

Questions and Answers

Which requirement ensures that a random number generator can produce every number from 0 to m-1 before repeating?

• It should use a nonlinear function.
• It should generate numbers efficiently in 64-bit arithmetic.
• It should have multiple seeds.
• It should be a full-period generating function. (correct)

What does the linear congruential generator formula Xn+1 = (a・Xn + c) mod m utilize?

• It is based on random sampling techniques.
• It requires prime numbers for m.
• It generates numbers using Fibonacci series.
• It incorporates an increment and a multiplier. (correct)

Which method of pseudorandom number generation utilizes the least significant bit for output?

• Linear Congruential Generator
• Counter Mode
• Blum Blum Shub Generator (correct)
• Output Feedback Mode

What is a notable characteristic of a non-deterministic random bit generator?

It is based on unpredictable physical processes. (C)

In the context of pseudorandom number generators, what does 'm' typically refer to?

The modulus value. (B)

Which of the following is not a characteristic of a good random number generator?

Can be initialized with multiple seeds. (C)

Which of the following PRNG modes is known for generating pseudorandom bits by combining a counter and a value?

Counter Mode (C)

What is the main drawback of deterministic random number generators compared to non-deterministic ones?

They can produce predictable sequences. (A)

What is a key characteristic of a Pseudorandom Number Generator (PRNG)?

It produces periodic sequences. (C)

Which of the following statements best describes the purpose of a hashing function?

To transform a long message into a fixed-size hash output. (D)

What does the term 'collision resistant' refer to in cryptographic hash functions?

It should prevent finding any two distinct original messages yielding the same hash. (D)

Which type of generator is generally considered inefficient for producing random numbers?

True Random Number Generator (TRNG) (B)

What is a potential issue with using XOR for hashing?

It can lead to predictably formatted data outputs. (B)

Which of the following is NOT a security requirement for cryptographic hash functions?

High computational inefficiency (C)

In hashing, what is one purpose of using 'rotated XOR'?

To enhance the randomness of the hash output. (B)

What does the fixed output size of a cryptographic hash function ensure?

The hash value will always have the same length regardless of input size. (A)

What is the formula used to calculate the probability of at least two people sharing a birthday in a group of n persons?

$p = 1 – (365・364・363・…・(365 – (n-1))) / 365n$ (A)

In the context of SHA-512, what does the function Ch(e, f, g) evaluate?

The XOR operation between e AND f and NOT e AND g (C)

What is one of the features of the Encrypt-then-MAC method in authenticated encryption?

It is the only method that can be proven to achieve the highest level of security. (A)

What is a key component of the SHA-3 hashing algorithm's iteration function?

A combination of theta, rho, pi, chi, and iota functions (B)

What can be inferred about SHA-512 and its use in secure hashing?

It features functions like Ch and Maj to enhance security. (C)

Which of the following statements is true regarding the applications of hash codes?

MAC is one of the applications for message integrity verification. (C)

Which statement accurately describes the encrypt-and-MAC method?

It is adequately secure and used in protocols like SSH. (A)

How many different birthday combinations are possible for n persons?

365n (D)

What is the significance of the condition H(M) = h in the context of hashing?

It demonstrates the pseudo-randomness of the hash function. (B)

What makes a hash function 2nd pre-image resistant?

It prevents the discovery of an alternative message with the same hash given the original message. (C)

How does the effort for brute-force attacks compare among different types of pre-image resistance?

First and second pre-image resistance both require 2m efforts, while collision resistance requires 2m/2. (D)

What is the core focus of cryptanalysis when evaluating hash functions?

To find effective methods to produce collisions in hash functions. (B)

In the context of the Birthday Attack, how does the probability of encountering a repeated element relate to the number of attempts?

It exceeds 0.5 after approximately √(k-1) attempts. (D)

What does the Birthday Paradox illustrate in terms of hash function security?

It demonstrates how easily collisions can be found despite a large number of possible outputs. (D)

How many attempts would typically be required to find a second message that produces the same hash as an m-bit hash value?

√(2m) = 2m/2 attempts. (C)

What is the expected number of pairs of inputs needed to potentially find a matching hash output, given n inputs?

n(n-1)/2 pairs. (C)

What is one primary use of random numbers in network security?

Session key generation (D)

Which criterion ensures that the frequency of occurrence of bits is approximately equal?

Randomness Criteria (D)

What should be unpredictable in the context of forward unpredictability?

Next output (B)

Which of the following is a source of true randomness for a TRNG?

Sound and video input (B)

In which type of generator is the output stream deterministic based on a seed?

Pseudorandom Number Generator (PRNG) (C)

What is meant by backward unpredictability in random number generation?

Seed should not be predictable from any output value. (B)

Which of the following describes a pseudorandom function?

Uses a seed to create a random bit stream. (C)

What is a common source of entropy for true random number generation?

Disk drives with random fluctuations (D)

Flashcards

Random Numbers

Values generated in no predictable order using specific algorithms or devices.

Deterministic Random Bit Generator

Produces random bits based on initial values or algorithms; results are predictable if the initial state is known.

Non-Deterministic Random Number Generator

Uses unpredictable physical processes to generate random numbers, enhancing randomness.

Linear Congruential Generator

A type of PRNG using the formula Xn+1 = (a*Xn + c) mod m with specific parameters.

Blum Blum Shub Generator

A PRNG that uses the square and modulus operation for generating bits from a seed.

PRNG Requirements

Properties that a Random Number Generator must fulfill, including full-period generation and efficiency.

Output Feedback Mode

A mode in PRNGs that generates pseudorandom bits using feedback from previous outputs.

Counter Mode

A PRNG mechanism that combines a counter with an encrypting block cipher to generate pseudorandom bits.

PRNG

Pseudo-Random Number Generator; generates numbers deterministically.

TRNG

True Random Number Generator; generates numbers nondeterministically.

Efficiency

PRNGs are generally efficient in number generation.

Hashing

Process to convert a long message into a short, fixed-size output.

Cryptographic Hash Function

A function with secure properties for input to output mapping.

Pre-image Resistance

Hard to find original input from its hash output.

Collision Resistance

Difficult to find two different inputs that hash to the same output.

XOR in Hashing

Operation used in hashing for combining bits of input.

Pseudo-randomness

The quality of output from a hash function that meets standard tests of randomness.

1st Pre-image Resistance

It is computationally infeasible to find any input M such that H(M) equals a given hash value h.

2nd Pre-image Resistance

It is computationally infeasible to find a different input M' that hashes to the same value as a given input M.

Brute-Force Attack

A method of cracking a hash function by systematically checking all possible inputs.

Birthday Attack

A strategy in cryptanalysis where different inputs produce the same hash due to probability; relies on the birthday paradox.

Birthday Paradox

Demonstrates that the probability of two people sharing a birthday exceeds 0.5 with just 23 people.

Cryptanalysis

The study of methods to circumvent cryptographic security, often by finding collisions in hash functions.

Key Distribution

The process of sharing cryptographic keys securely among parties to enable encrypted communication.

Uniform Distribution

A criterion where occurrences of bits should be evenly spread across the output.

Independence (in Randomness)

A characteristic where no output value can predict any other output value from the random number stream.

Forward Unpredictability

A property that ensures future values in the random sequence cannot be predicted if the seed is unknown.

Backward Unpredictability

A characteristic that prevents anyone from predicting the seed used to generate outputs from known outputs.

True Random Number Generator (TRNG)

A device that generates numbers from unpredictable physical phenomena, ensuring high randomness quality.

Pseudorandom Number Generator (PRNG)

An algorithm that uses a seed value to produce number sequences that appear random but are deterministic.

Birthday Combinations

The total ways to assign birthdays to n persons, calculated as 365^n.

Different Birthday Cases

The number of cases where n persons have distinct birthdays, expressed as 365 × 364 × ... × (365 - (n-1)).

Probability of Shared Birthdays

The probability p that at least two people share a birthday, calculated as p = 1 - (different cases / total cases).

SHA-512

A secure hashing algorithm that processes data through functions to produce a 512-bit hash output.

Ch Function in SHA-512

A Boolean function that outputs one value based on inputs e, f, and g: Ch(e, f, g) = (e AND f) XOR (NOT e AND g).

Maj Function in SHA-512

A Boolean function defined as Maj(a, b, c) = (a AND b) XOR (a AND c) XOR (b AND c), used in SHA-512 computations.

SHA-3 Sponge Construction

An architecture for SHA-3 hashing, where an input message is absorbed into a state variable before hashing.

Encrypt-then-MAC

A method of securing messages where encryption is done first, followed by creating a Message Authentication Code (MAC).

Study Notes

Network Security: Random Numbers and Hashing

• This document details random numbers and hashing, core concepts in network security.
• It covers true random number generators (TRNGs) and pseudorandom number generators (PRNGs), exploring their uses and characteristics.
• The document also discusses cryptographic hash functions, their requirements, and potential attacks.

Random Numbers

• Randomness Criteria: Two key criteria are uniform distribution (frequency of bits is approximately equal) and independence (no subsequence can be inferred from another).
• Unpredictability Criteria: Forward unpredictability (next output is unpredictable if the seed is unknown), and backward unpredictability (seed is not predictable from any output value).
• Random Number Generation: A diagram illustrates the process, differentiating between true random number generators (TRNGs) drawing from real-world randomness (e.g., thermal noise), and pseudorandom number generators (PRNGs) that produce deterministic sequences using algorithms and seeds.
• TRNG Entropy Sources: Various sources of entropy for TRNGs are listed, including sound/video input, thermal noise, fluctuations in disk drive speeds, and clock timings.

Hashing

• Goal of a Hash Function: To map long messages to short, fixed-size hash values (digests). These are useful for integrity checks and digital signatures.
• Hashing Using XOR: A simplified method initially used for integrity checks and block-level hash function generation; XOR operations across blocks and bits are emphasized. This type is not as complex or secure when compared to more established hashing functions.
• Cryptographic Hash Function Requirements: Emphasis is on variability in input size, fixed output size, and efficiency for hardware and software implementations.
• Security Requirements for Cryptographic Hash Functions: Includes: pre-image resistance (one-way property), 2nd pre-image resistance (weak collision resistance), and strong collision resistance.
• Relationship among Hash Function Properties: A Venn diagram visually shows relationships between collision resistance, 2nd pre-image resistance and preimage resistance.
• Brute-Force Attacks on Cryptographic Hash Functions: Effort for these attacks corresponds to the number of possible hash values; 1st pre-image resistance is 2^m; 2nd pre-image resistance is 2^m; collision resistance is 2^m/2.

PRNGs

• Linear Congruential Generators (LCGs): Details of LCG parameters including modulus (m), multiplier (a), increment (c), and seed (x₀), are provided.
• Blum Blum Shub Generator: The generation method is outlined—initializing with a seed, calculating (x² mod n), and selecting the least significant bit.
• PRNGs using Block Cipher Modes of Operation: Two cipher modes are described (counter mode and output feedback mode), using pseudo-random bits to generate random values.
• PRNG based on RSA: The method uses RSA to encrypt the seed and generate pseudo-random bits in a cyclic fashion, emphasizing the use of encryption/decryption procedures for cryptographic security.

PRNG Comparison:

• Efficiency & Determinism of PRNGs vs. TRNGs: PRNGs are very efficient, deterministic, and periodic; TRNGs are generally inefficient, non-deterministic, and aperiodic.

Hashing Applications

• Message Authentication Code (MAC): Methods of adding MACs to messages are introduced, along with diagrams illustrating the processes involved. Different methods include encrypt-then-MAC, encrypt-and-MAC, and MAC-then-Encrypt.
• Digital Signatures: The use of a hash function and associated cryptographic functions to generate and verify digital signatures is illustrated, using one-way functions.
• Message Digest Implementation (e.g., MD5): Steps involved are outlined (padding to a fixed length, appending length information, initializing a buffer, and processing in blocks).
• MD5 Implementation Details: Specific details about the MD5 algorithm are provided, outlining how parameters are initialized and manipulated for various rounds of processing.
• Iteration Function(f) for SHA-3: Various cryptographic functions used are discussed (theta, rho, pi, chi, iota) focusing on the different functionalities each performs. This function takes various inputs and outputs results based on the current values.
• SHA-3 Sponge Construction: A detailed outline of the SHA-3 structure emphasizing the sponge construction, showing input message processing, the state, and the output value, with illustrations of the absorption and squeezing phases.