














Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
The basics of hash functions, message authentication codes (macs), and digital signatures. Topics include hash function requirements, security considerations, and applications. The document also discusses various hash function algorithms and their security levels.
Typology: Study notes
1 / 22
This page cannot be seen from the preview
Don't miss anything!















Message
Hash function
Public key algorithm
Alice Signature
Alice’s private key
Bob
Hash function
Alice’s public key
Hash value 1
Hash value 2
Hash value
Public key algorithm
yes no
Message Signature
arbitrary length
fixed length
collision resistant
2nd preimage resistant
preimage resistance
2nd preimage resistance
collision resistance
m i’
2 n^ messages with the contents required by the forger h
h ( m i’) = y
n - bits
Given y
I
state confirm
thereby
borrowed received
$10, ten thousand dollars from^
Mr. Dr.
Kris Krzysztof
Gaj on November 15,11 / 15 / 2002. This
money sum of money
should is required to be^
returned given back to^
Mr. Dr. Gaj
by the
22 nd 23 rd^ day of^
November December 2002.
I
state confirm
thereby
borrowed received from^
Mr. Dr.
Kris Krzysztof
on
November 15, 11 / 15 / 2002
This textitem
should is required to be^
returned given back to^
Mr. Dr. Gaj
I a^ bookmanuscript
security in wireless networks. fast implementations of cryptography.
by the
22 nd 23 rd^ day of^
November December 2002.
Customized (dedicated)
Based on block ciphers
Based on modular arithmetic
MDC- MDC- IBM, Brachtl, Meyer, Schilling, 1988
MASH- 1988-
MD2 (^) Rivest 1988
MD4 (^) Rivest 1990
MD Rivest 1990
SHA-
SHA-
RIPEMD-
RIPEMD-
European RACE Integrity Primitives Evaluation Project, 1992
NSA, 1992
NSA, 1995 SHA-256, SHA-384, SHA-512 (^) NSA, 2000
MD
MD
MD5 (^) SHA-
SHA-
RIPEMD-
RIPEMD-
partially broken
broken , H. Dobbertin, 1995 (one hour on PC, 20 free bytes at the start of the message)
partially broken, collisions for the compression function, Dobbertin, 1996 (10 hours on PC)
weakness discovered, 1995 NSA, 1998 France
reduced round version broken, Dobbertin 1995
SHA-256, SHA-384, SHA-
Applications (1)
Advantages
Applications (2)
program
hash
fingerprint original_fingerprint
safe place
Applications (4)
PRNG
ki mi ci
k 0 = hash(KAB || IV ) k 1 = hash(KAB || k 0 )
................. kn = hash(KAB || kn-1)
or
k 0 = hash(KAB || IV) k 1 = hash(KAB || c 0 )
................. kn = hash(KAB || cn-1)
Message m
Padding, appending bit length, M
f f****...
Ht
compression function
output transformation
h(m) g
M 2 Mt
H 0 = IV Hi = f (Hi-1, Mi) h(m) = g(Ht)
In SHA- n= r=
In MD n= r=
message 100000000000 length
length of the entire message in bits
64-bits
All zero padding:
Correct padding: X X X 0 0 1 0 0 X X X 1 0 0 0 0
Message block 512 512 1024 1024 size
Number of 80 64 80 80 digest rounds
SHA-512, SHA-
SHA-
SHA-
Speed
Area
0
100
200
300
400
500
600
700
462
616
Speed in hardware [Mbit/s]
SHA-1 (^) SHA-
Complexity of the best attack 280 2256 the same as^ Skipjack^ AES-
GMU, 2002
Message
Secret key algorithm
Alice MAC
Secret key of Alice and Bob
Bob
Secret key algorithm
Authentication
MAC’
MAC
yes no
Message MAC
Secret key of Alice and Bob
KAB KAB
Given zero or more pairs
mi, MACK(mi) (^) i = 1..k
it is computationally impossible to find any new pair
m’ , MACK(m’ )
Such that
m’ ≠ mi i = 1..k
Resistance against
m 1
m 2
mt
Ht
Ht-
MAC
MAC
FIPS-