Abstract image of a woman sitting on books and studying on a laptop

Information and data security cryptographic hash functions

Download as PPTX, PDF
M
Mazin Alwaaly

This document discusses hash functions and their cryptographic applications. It begins by defining hash functions and their properties like one-wayness and collision resistance. It then discusses various applications of cryptographic hash functions like message authentication codes, digital signatures, password files, and more. It provides details on how hash functions are used for message authentication and digital signatures. It also describes the Secure Hash Algorithm family of hash functions like SHA-1, SHA-2, and the NIST competition for the SHA-3 standard.

1 of 31
Downloaded 50 times
2 Hash functions • A hash function H accepts a variable-length block of data M as input and produces a fixed-size hash value. • h = H(M). • the principal object of a hash function is data integrity. • hash used to detect changes to message. • The kind of hash in security applications is referred to as a cryptographic hash function. - computationally infeasible to find data mapping to specific hash (one-way property) - computationally infeasible to find two data to same hash (collision-free property)
Cryptographic Hash Function 3
APPLICATIONS OF CRYPTOGRAPHIC HASH FUNCTIONS • Message Authentication. - message authentication code (MAC). • Digital Signatures. • Other application:- - one-way password file. - intrusion detection. - virus detection. - pseudorandom function(PRF). 4
Message Authentication 5 • Message authentication is a mechanism or service used to verify the integrity of a message. • Message authentication assures that data received are exactly as sent (i.e., contain no modification, insertion, deletion, or replay). • When a hash function is used to provide message authentication, the hash function value is often referred to as a message digest.
Hash Functions & Message Authentication 6 Authentication+confidentiality Authentication only Authentication only Authentication+confidentiality
Message Authentication Code (MAC) 7 • Message authentication is achieved using message authentication code(MAC). • also known as a keyed hash function. • MACs are used between two parties that share a secret key to authenticate information exchanged between those parties. • A MAC function takes as input a secret key and a data block and produces a hash value, referred to as the MAC.
Digital signatures • Another important application, which is similar to the message authentication application. • The operation of the digital signature is similar to that of the MAC. • In the case of the digital signature, the hash value of a message is encrypted with a user's private key. • Anyone who knows the user's public key can verify the integrity of the message that is associated with the digital signature. In this case an attacker who wishes to alter the message would need to know the user's private key. 8
Hash Functions & Digital Signatures 9 Digital signature+Authentication Digital signature+Authentication+Confidentiality
10 • to create a one-way password file – store hash of password not actual password • for intrusion detection and virus detection – keep & check hash of files on system • pseudorandom function (PRF) or pseudorandom number generator (PRNG) Other Hash Function Uses
11 Two Simple Hash Functions • consider two simple hash functions • bit-by-bit exclusive-OR (XOR) of every block – Ci = bi1 xor bi2 xor . . . xor bim – a longitudinal redundancy check – reasonably effective as data integrity check • one-bit circular shift on hash value – for each successive n-bit block • rotate current hash value to left by1bit and XOR block – good for data integrity but useless for security
Hash Function Requirements 12
13 Hash Function Resistance Properties Required for Various Data Integrity Application
Attacks on Hash Functions 14 • Have brute-force attacks and cryptanalysis • a preimage or second preimage attack – find y s.t. H(y) equals a given hash value • collision resistance – find two messages x & y with same hash so H(x) = H(y) • hence value 2m/2 determines strength of hash code against brute-force attacks – 128-bits inadequate, 160-bits suspect
Hash Function Cryptanalysis 15 • cryptanalytic attacks exploit some property of alg so faster than exhaustive search • hash functions use iterative structure – process message in blocks (fixed length) • attacks focus on collisions in function f
16 Secure Hash Algorithm (SHA) • SHA originally designed by the National Institute of Standards and Technology (NIST) in 1993. • based on design of MD4 • was revised in 1995 as SHA-1 • produces a hash value of 160 bits. • NIST produced three new versions of SHA, known as SHA-256, SHA-384, and SHA-512, these hash algorithms are known as SHA-2. • These new versions have the same structure and use the same types of arithmetic and logical operations as SHA-1 • hence analysis should be similar but security levels are rather higher
SHA Versions SHA-1 SHA-224 SHA-256 SHA-384 SHA-512 Message digest size 160 224 256 384 512 Message size < 264 < 264 < 264 < 2128 < 2128 Block size 512 512 512 1024 1024 Word size 32 32 32 64 64 Number of steps 80 64 64 80 80 17
SHA-512 Overview 18
SHA-5 Logic 19
20
SHA compression function • Step 4/ processing message in 1024-bit blocks • Heart of the algorithm • consists of 80 rounds – updating a 512-bit buffer – using a 64-bit value Wt derived from the current message block – and a round constant based on cube root of first 80 prime numbers 21
22
SHA-512 Processing of a single 1024-Bits Block 23
24 Elementary SHA-512 Operation (single round)
25 • Let us look in more detail at the logic in each of the 80 steps of the processing of one 512-bit block .Each round is defined by the following set of equations:
26
Creation of 80-word input sequence for SHA-512 processing of single block 27
28 It remains to indicate how the 64-bit word values Wt are derived from the 1024-bit message. The first 16 values of Wt are taken directly from the 16 words of the current block. The remaining values are defined as:
29 SHA-3 • SHA-1 not yet "broken” – but similar to broken MD5 & SHA-0 – so considered insecure • SHA-2 (esp. SHA-512) seems secure – shares same structure and mathematical operations as predecessors so have concern • NIST announced in 2007 a competition for the SHA-3 next gen NIST hash function
30 • replace SHA-2 with SHA-3 in any use – so use same hash sizes • preserve the online nature of SHA-2 – so must process small blocks (512 / 1024 bits) • evaluation criteria – security – cost in time & memory – characteristics: such as flexibility & simplicity The basic requirements of SHA-3
31

More Related Content

PPTX
Message digest 5
Tirthika Bandi
 
PPTX
Hash Function
Siddharth Srivastava
 
PPTX
Hash Function
stalin rijal
 
PPTX
Cryptography
subodh pawar
 
PPT
block ciphers
Asad Ali
 
PPT
Message Authentication
chauhankapil
 
PPT
Network security cryptographic hash function
Mijanur Rahman Milon
 
PPTX
Cryptographic Hashing Functions
Yusuf Uzun
 
Message digest 5
Tirthika Bandi
 
Hash Function
Siddharth Srivastava
 
Hash Function
stalin rijal
 
Cryptography
subodh pawar
 
block ciphers
Asad Ali
 
Message Authentication
chauhankapil
 
Network security cryptographic hash function
Mijanur Rahman Milon
 
Cryptographic Hashing Functions
Yusuf Uzun
 

What's hot(20)

PPTX
Hash function
Salman Memon
 
PPT
Message Authentication Code & HMAC
Krishna Gehlot
 
PDF
symmetric key encryption algorithms
Rashmi Burugupalli
 
PPTX
cryptography
Abhijeet Singh
 
PPT
DES (Data Encryption Standard) pressentation
sarhadisoftengg
 
PPTX
Cryptography - Block cipher & stream cipher
Niloy Biswas
 
PPTX
Cryptography
Jens Patel
 
PPTX
Diffie Hellman Key Exchange
SAURABHDHAGE6
 
PDF
AES-Advanced Encryption Standard
Prince Rachit
 
PPTX
Cryptography and Network Security
Pa Van Tanku
 
PPTX
Hash Function
ssuserdfb2da
 
PPTX
Cryptography.ppt
Uday Meena
 
PPTX
Feistel cipher
MDKAWSARAHMEDSAGAR
 
PPTX
IP security
shraddha mane
 
PPT
Hashing
Hossain Md Shakhawat
 
PPTX
Cryptography and applications
thai
 
PPTX
Data Encryption Standard (DES)
Haris Ahmed
 
PPT
E-mail Security in Network Security NS5
koolkampus
 
PPT
Hash Function & Analysis
Pawandeep Kaur
 
PDF
Introduction to Cryptography
Seema Goel
 
Hash function
Salman Memon
 
Message Authentication Code & HMAC
Krishna Gehlot
 
symmetric key encryption algorithms
Rashmi Burugupalli
 
cryptography
Abhijeet Singh
 
DES (Data Encryption Standard) pressentation
sarhadisoftengg
 
Cryptography - Block cipher & stream cipher
Niloy Biswas
 
Cryptography
Jens Patel
 
Diffie Hellman Key Exchange
SAURABHDHAGE6
 
AES-Advanced Encryption Standard
Prince Rachit
 
Cryptography and Network Security
Pa Van Tanku
 
Hash Function
ssuserdfb2da
 
Cryptography.ppt
Uday Meena
 
Feistel cipher
MDKAWSARAHMEDSAGAR
 
IP security
shraddha mane
 
Hashing
Hossain Md Shakhawat
 
Cryptography and applications
thai
 
Data Encryption Standard (DES)
Haris Ahmed
 
E-mail Security in Network Security NS5
koolkampus
 
Hash Function & Analysis
Pawandeep Kaur
 
Introduction to Cryptography
Seema Goel
 

Similar to Information and data security cryptographic hash functions(20)

PDF
Cns
ArthyR3
 
PPT
UNIT3_class (1).ppt CRYPTOGRAPHY NOTES AND NETWORK
jeevasreemurali
 
PDF
Cs8792 cns - unit iv
ArthyR3
 
PDF
Cs8792 cns - unit iv
ArthyR3
 
PPTX
cryptography and network security cns.pptx
gkumar610
 
PPT
Message authentication and hash function
omarShiekh1
 
PDF
Public Key Encryption & Hash functions
Dr.Florence Dayana
 
PPT
secure hash function for authentication in CNS
NithyasriA2
 
PDF
HASH FUNCTIONS.pdf
KalsoomTahir2
 
PPTX
Ch_07 (1).pptx
siddhusid10
 
PPT
Hash crypto
Fraboni Ec
 
PPT
Hash crypto
David Hoen
 
PPT
Hash crypto
Harry Potter
 
PPT
Hash crypto
James Wong
 
PPT
Hash crypto
Young Alista
 
PPT
Hash crypto
Tony Nguyen
 
PPT
Hash crypto
Luis Goldster
 
PPT
Hash_Crypto.ppt
ssuser5297f5
 
PPT
01204427-Hash_Crypto (1).ppt
GnanalakshmiV
 
PPT
SHA New Revised Version - SHA-512 Syllabus Module 3
AnantNimkar1
 
Cns
ArthyR3
 
UNIT3_class (1).ppt CRYPTOGRAPHY NOTES AND NETWORK
jeevasreemurali
 
Cs8792 cns - unit iv
ArthyR3
 
Cs8792 cns - unit iv
ArthyR3
 
cryptography and network security cns.pptx
gkumar610
 
Message authentication and hash function
omarShiekh1
 
Public Key Encryption & Hash functions
Dr.Florence Dayana
 
secure hash function for authentication in CNS
NithyasriA2
 
HASH FUNCTIONS.pdf
KalsoomTahir2
 
Ch_07 (1).pptx
siddhusid10
 
Hash crypto
Fraboni Ec
 
Hash crypto
David Hoen
 
Hash crypto
Harry Potter
 
Hash crypto
James Wong
 
Hash crypto
Young Alista
 
Hash crypto
Tony Nguyen
 
Hash crypto
Luis Goldster
 
Hash_Crypto.ppt
ssuser5297f5
 
01204427-Hash_Crypto (1).ppt
GnanalakshmiV
 
SHA New Revised Version - SHA-512 Syllabus Module 3
AnantNimkar1
 

More from Mazin Alwaaly(20)

PPTX
Pattern recognition voice biometrics
Mazin Alwaaly
 
PPTX
Pattern recognition palm print authentication system
Mazin Alwaaly
 
PPTX
Pattern recognition on line signature
Mazin Alwaaly
 
PPTX
Pattern recognition multi biometrics using face and ear
Mazin Alwaaly
 
PPTX
Pattern recognition IRIS recognition
Mazin Alwaaly
 
PPT
Pattern recognition hand vascular pattern recognition
Mazin Alwaaly
 
PPTX
Pattern recognition Hand Geometry
Mazin Alwaaly
 
PPTX
Pattern recognition forensic dental identification
Mazin Alwaaly
 
PPT
Pattern recognition fingerprints
Mazin Alwaaly
 
PPTX
Pattern recognition facial recognition
Mazin Alwaaly
 
PPTX
Pattern recognition ear as a biometric
Mazin Alwaaly
 
PPTX
Pattern recognition 3d face recognition
Mazin Alwaaly
 
PPTX
Multimedia multimedia over wireless and mobile networks
Mazin Alwaaly
 
PPT
Multimedia network services and protocols for multimedia communications
Mazin Alwaaly
 
PPTX
Multimedia content based retrieval in digital libraries
Mazin Alwaaly
 
PPTX
Multimedia lossy compression algorithms
Mazin Alwaaly
 
PPTX
Multimedia lossless compression algorithms
Mazin Alwaaly
 
PPTX
Multimedia basic video compression techniques
Mazin Alwaaly
 
PPT
Multimedia image compression standards
Mazin Alwaaly
 
PPTX
Multimedia fundamental concepts in video
Mazin Alwaaly
 
Pattern recognition voice biometrics
Mazin Alwaaly
 
Pattern recognition palm print authentication system
Mazin Alwaaly
 
Pattern recognition on line signature
Mazin Alwaaly
 
Pattern recognition multi biometrics using face and ear
Mazin Alwaaly
 
Pattern recognition IRIS recognition
Mazin Alwaaly
 
Pattern recognition hand vascular pattern recognition
Mazin Alwaaly
 
Pattern recognition Hand Geometry
Mazin Alwaaly
 
Pattern recognition forensic dental identification
Mazin Alwaaly
 
Pattern recognition fingerprints
Mazin Alwaaly
 
Pattern recognition facial recognition
Mazin Alwaaly
 
Pattern recognition ear as a biometric
Mazin Alwaaly
 
Pattern recognition 3d face recognition
Mazin Alwaaly
 
Multimedia multimedia over wireless and mobile networks
Mazin Alwaaly
 
Multimedia network services and protocols for multimedia communications
Mazin Alwaaly
 
Multimedia content based retrieval in digital libraries
Mazin Alwaaly
 
Multimedia lossy compression algorithms
Mazin Alwaaly
 
Multimedia lossless compression algorithms
Mazin Alwaaly
 
Multimedia basic video compression techniques
Mazin Alwaaly
 
Multimedia image compression standards
Mazin Alwaaly
 
Multimedia fundamental concepts in video
Mazin Alwaaly
 

Recently uploaded(20)

PDF
WHOLE INFORMATION ABOUT CHROMATOGRAPHY.pdf
RAJ TAPARIYA
 
PPTX
CARDIAC20SYSTEMStudynotes.PPresentation.
ClarisejaneSartillo1
 
PPTX
CYTOKINES CHEMOKINE LYMPHOKINES- properties functions
vijithravijithra49
 
PDF
Unit 3 Protein basic - D Pharm 2nd year pharmacy
Vipan Kamboj
 
PDF
Honors Chemistry Unit 1 Session 1- Atoms and Elements.
aallen110
 
PDF
Earth summits- A Brief Overview and Environmental Movements
Nistarini College, Purulia (W.B) India
 
PDF
JWST-TST DREAMS: NIRSpec/PRISM Transmission Spectroscopy of the Habitable Zon...
Sérgio Sacani
 
PPTX
Eng Mater materiald fkb,llgedxcvbbc.pptx
SrilakshmivenkataNar
 
PDF
FYJC-Chemistry ebook for 11 th maharsahra HSC
rpyeole1
 
PDF
JWST-TST DREAMS: Secondary Atmosphere Constraints for the Habitable Zone Plan...
Sérgio Sacani
 
PPTX
Comfort, Restaurant and sleep, pain bs 1 semester
abhinavverma4044
 
PDF
Vasculitis Cheat Sheet (lrg-med-sml).pdf
akbarbudhiantono2
 
PDF
Controlling potential genotoxic impurities during API synthesis .pdf
LalitModi12
 
PPTX
Plasma Membrane PPT by --Darshan Thakre MSc -1 Govt. Institute Of Science , ...
imdarshanthakre10
 
PPTX
AIDS Acquired Immunodeficiency Syndrome(AIDS).pptx
academicres24
 
PDF
A taxonomy and survey of Dynamic Graph Visualization
hackeroverscore
 
PDF
ScienceCriticism.pdf There are No Short-Term Oscillations in Plant Transpirat...
Leonid Ledata
 
PDF
ACE-ECOss-2024-2769.pdf-threatened birds
pforbi
 
PPT
TK....................................ppt
maninderjeet5551
 
PDF
BIOCHEM-MODEL-PAPER-2 d pharmacy 2nd sem
Vipan Kamboj
 
WHOLE INFORMATION ABOUT CHROMATOGRAPHY.pdf
RAJ TAPARIYA
 
CARDIAC20SYSTEMStudynotes.PPresentation.
ClarisejaneSartillo1
 
CYTOKINES CHEMOKINE LYMPHOKINES- properties functions
vijithravijithra49
 
Unit 3 Protein basic - D Pharm 2nd year pharmacy
Vipan Kamboj
 
Honors Chemistry Unit 1 Session 1- Atoms and Elements.
aallen110
 
Earth summits- A Brief Overview and Environmental Movements
Nistarini College, Purulia (W.B) India
 
JWST-TST DREAMS: NIRSpec/PRISM Transmission Spectroscopy of the Habitable Zon...
Sérgio Sacani
 
Eng Mater materiald fkb,llgedxcvbbc.pptx
SrilakshmivenkataNar
 
FYJC-Chemistry ebook for 11 th maharsahra HSC
rpyeole1
 
JWST-TST DREAMS: Secondary Atmosphere Constraints for the Habitable Zone Plan...
Sérgio Sacani
 
Comfort, Restaurant and sleep, pain bs 1 semester
abhinavverma4044
 
Vasculitis Cheat Sheet (lrg-med-sml).pdf
akbarbudhiantono2
 
Controlling potential genotoxic impurities during API synthesis .pdf
LalitModi12
 
Plasma Membrane PPT by --Darshan Thakre MSc -1 Govt. Institute Of Science , ...
imdarshanthakre10
 
AIDS Acquired Immunodeficiency Syndrome(AIDS).pptx
academicres24
 
A taxonomy and survey of Dynamic Graph Visualization
hackeroverscore
 
ScienceCriticism.pdf There are No Short-Term Oscillations in Plant Transpirat...
Leonid Ledata
 
ACE-ECOss-2024-2769.pdf-threatened birds
pforbi
 
TK....................................ppt
maninderjeet5551
 
BIOCHEM-MODEL-PAPER-2 d pharmacy 2nd sem
Vipan Kamboj
 

Information and data security cryptographic hash functions

  • 2.
    2 Hash functions • Ahash function H accepts a variable-length block of data M as input and produces a fixed-size hash value. • h = H(M). • the principal object of a hash function is data integrity. • hash used to detect changes to message. • The kind of hash in security applications is referred to as a cryptographic hash function. - computationally infeasible to find data mapping to specific hash (one-way property) - computationally infeasible to find two data to same hash (collision-free property)
  • 3.
  • 4.
    APPLICATIONS OF CRYPTOGRAPHIC HASHFUNCTIONS • Message Authentication. - message authentication code (MAC). • Digital Signatures. • Other application:- - one-way password file. - intrusion detection. - virus detection. - pseudorandom function(PRF). 4
  • 5.
    Message Authentication 5 • Messageauthentication is a mechanism or service used to verify the integrity of a message. • Message authentication assures that data received are exactly as sent (i.e., contain no modification, insertion, deletion, or replay). • When a hash function is used to provide message authentication, the hash function value is often referred to as a message digest.
  • 6.
    Hash Functions &Message Authentication 6 Authentication+confidentiality Authentication only Authentication only Authentication+confidentiality
  • 7.
    Message Authentication Code (MAC) 7 •Message authentication is achieved using message authentication code(MAC). • also known as a keyed hash function. • MACs are used between two parties that share a secret key to authenticate information exchanged between those parties. • A MAC function takes as input a secret key and a data block and produces a hash value, referred to as the MAC.
  • 8.
    Digital signatures • Anotherimportant application, which is similar to the message authentication application. • The operation of the digital signature is similar to that of the MAC. • In the case of the digital signature, the hash value of a message is encrypted with a user's private key. • Anyone who knows the user's public key can verify the integrity of the message that is associated with the digital signature. In this case an attacker who wishes to alter the message would need to know the user's private key. 8
  • 9.
    Hash Functions &Digital Signatures 9 Digital signature+Authentication Digital signature+Authentication+Confidentiality
  • 10.
    10 • to createa one-way password file – store hash of password not actual password • for intrusion detection and virus detection – keep & check hash of files on system • pseudorandom function (PRF) or pseudorandom number generator (PRNG) Other Hash Function Uses
  • 11.
    11 Two Simple HashFunctions • consider two simple hash functions • bit-by-bit exclusive-OR (XOR) of every block – Ci = bi1 xor bi2 xor . . . xor bim – a longitudinal redundancy check – reasonably effective as data integrity check • one-bit circular shift on hash value – for each successive n-bit block • rotate current hash value to left by1bit and XOR block – good for data integrity but useless for security
  • 12.
  • 13.
    13 Hash Function ResistanceProperties Required for Various Data Integrity Application
  • 14.
    Attacks on HashFunctions 14 • Have brute-force attacks and cryptanalysis • a preimage or second preimage attack – find y s.t. H(y) equals a given hash value • collision resistance – find two messages x & y with same hash so H(x) = H(y) • hence value 2m/2 determines strength of hash code against brute-force attacks – 128-bits inadequate, 160-bits suspect
  • 15.
    Hash Function Cryptanalysis 15 •cryptanalytic attacks exploit some property of alg so faster than exhaustive search • hash functions use iterative structure – process message in blocks (fixed length) • attacks focus on collisions in function f
  • 16.
    16 Secure Hash Algorithm (SHA) •SHA originally designed by the National Institute of Standards and Technology (NIST) in 1993. • based on design of MD4 • was revised in 1995 as SHA-1 • produces a hash value of 160 bits. • NIST produced three new versions of SHA, known as SHA-256, SHA-384, and SHA-512, these hash algorithms are known as SHA-2. • These new versions have the same structure and use the same types of arithmetic and logical operations as SHA-1 • hence analysis should be similar but security levels are rather higher
  • 17.
    SHA Versions SHA-1 SHA-224SHA-256 SHA-384 SHA-512 Message digest size 160 224 256 384 512 Message size < 264 < 264 < 264 < 2128 < 2128 Block size 512 512 512 1024 1024 Word size 32 32 32 64 64 Number of steps 80 64 64 80 80 17
  • 18.
  • 19.
  • 20.
  • 21.
    SHA compression function •Step 4/ processing message in 1024-bit blocks • Heart of the algorithm • consists of 80 rounds – updating a 512-bit buffer – using a 64-bit value Wt derived from the current message block – and a round constant based on cube root of first 80 prime numbers 21
  • 22.
  • 23.
    SHA-512 Processing ofa single 1024-Bits Block 23
  • 24.
  • 25.
    25 • Let uslook in more detail at the logic in each of the 80 steps of the processing of one 512-bit block .Each round is defined by the following set of equations:
  • 26.
  • 27.
    Creation of 80-wordinput sequence for SHA-512 processing of single block 27
  • 28.
    28 It remains toindicate how the 64-bit word values Wt are derived from the 1024-bit message. The first 16 values of Wt are taken directly from the 16 words of the current block. The remaining values are defined as:
  • 29.
    29 SHA-3 • SHA-1 notyet "broken” – but similar to broken MD5 & SHA-0 – so considered insecure • SHA-2 (esp. SHA-512) seems secure – shares same structure and mathematical operations as predecessors so have concern • NIST announced in 2007 a competition for the SHA-3 next gen NIST hash function
  • 30.
    30 • replace SHA-2with SHA-3 in any use – so use same hash sizes • preserve the online nature of SHA-2 – so must process small blocks (512 / 1024 bits) • evaluation criteria – security – cost in time & memory – characteristics: such as flexibility & simplicity The basic requirements of SHA-3
  • 31.