Back to Search
Start Over
Security Analysis of salt||password Hashes
- Source :
- 2012 International Conference on Advanced Computer Science Applications and Technologies (ACSAT).
- Publication Year :
- 2012
- Publisher :
- IEEE, 2012.
-
Abstract
- Protection of passwords used to authenticate computer systems and networks is one of the most important application of cryptographic hash functions. Due to the application of precomputed memory look up attacks such as birthday and dictionary attacks on the hash values of passwords to find passwords, it is usually recommended to apply hash function to the combination of both the salt and password, denoted salt||password, to prevent these attacks. In this paper, we present the first security analysis of salt||password hashing application. We show that when hash functions based on the compression functions with easily found fixed points are used to compute the salt||password hashes, these hashes are susceptible to precomputed offline birthday attacks. For example, this attack is applicable to the salt||password hashes computed using the standard hash functions such as MD5, SHA-1, SHA-256 and SHA-512 that are based on the popular Davies-Meyer compression function. This attack exposes a subtle property of this application that although the provision of salt prevents an attacker from finding passwords, salts prefixed to the passwords do not prevent an attacker from doing a precomputed birthday attack to forge an unknown password. In this forgery attack, we demonstrate the possibility of building multiple passwords for an unknown password for the same hash value and salt. Interestingly, password||salt (i.e. salts suffixed to the passwords) hashes computed using Davies-Meyer hash functions are not susceptible to this attack, showing the first security gap between the prefix-salt and suffix-salt methods of hashing passwords.
- Subjects :
- Password
Salt (cryptography)
Computer science
ComputingMethodologies_IMAGEPROCESSINGANDCOMPUTERVISION
Computer security
computer.software_genre
One-time password
GeneralLiterature_MISCELLANEOUS
Password strength
S/KEY
ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS
Rainbow table
Data_FILES
Hash chain
Cryptographic hash function
computer
Subjects
Details
- Database :
- OpenAIRE
- Journal :
- 2012 International Conference on Advanced Computer Science Applications and Technologies (ACSAT)
- Accession number :
- edsair.doi...........99a5a5224cb4a3bff266ac960cee2acd
- Full Text :
- https://doi.org/10.1109/acsat.2012.49