Upload File

md5 - new mexico institute of mining and...

  • Home
  • Documents
  • MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can
12
11/28/2003 Harley Kozushko 1 MD5 Algorithm Harley Kozushko

Upload: lamkien

Post on 08-Apr-2018

215 views

Category:

Documents


1 download

Report

TRANSCRIPT

Page 1: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 1

MD5 Algorithm

Harley Kozushko

Page 2: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 2

Opening

• MD5 algorithm can be used as a digital signature mechanism.

• This presentation will explore the technical aspects of the MD5 algorithm.

Page 3: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 3

Description of the MD5 Algorithm

• Takes as input a message of arbitrary length and produces as output a 128 bit “fingerprint” or “message digest” of the input.

• It is conjectured that it is computationally infeasible to produce two messages having the same message digest.

• Intended where a large file must be “compressed” in a secure manner before being encrypted with a private key under a public-key cryptosystem such as PGP.

Page 4: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 4

MD5 Algorithm

• Suppose a b-bit message as input, and that we need to find its message digest.

Page 5: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 5

MD5 Algorithm

• Step 1 – append padded bits:– The message is padded so that its length is

congruent to 448, modulo 512.• Means extended to just 64 bits shy of being of

512 bits long.

– A single “1” bit is appended to the message, and then “0” bits are appended so that the length in bits equals 448 modulo 512.

Page 6: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 6

MD5 Algorithm

• Step 2 – append length:– A 64 bit representation of b is appended to

the result of the previous step.

– The resulting message has a length that is an exact multiple of 512 bits.

Page 7: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 7

MD5 Algorithm

• Step 3 – Initialize MD Buffer

• A four-word buffer (A,B,C,D) is used to compute the message digest.– Here each of A,B,C,D, is a 32 bit register.

Page 8: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 8

MD5 Algorithm

• Step 3 cont.

• These registers are initialized to the following values in hexadecimal:

word A: 01 23 45 67word B: 89 ab cd efword C: fe dc ba 98word D: 76 54 32 10

Page 9: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 9

MD5 Algorithm

• Step 4 – Process message in 16-word blocks.– Four auxiliary functions that take as input three 32-bit

words and produce as output one 32-bit word.

F(X,Y,Z) = XY v not(X) ZG(X,Y,Z) = XZ v Y not(Z)H(X,Y,Z) = X xor Y xor ZI(X,Y,Z) = Y xor (X v not(Z))

Page 10: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 10

MD5 Algorithm

• Step 4 – Process message in 16-word blocks cont.– if the bits of X, Y, and Z are independent and

unbiased, the each bit of F(X,Y,Z), G(X,Y,Z), H(X,Y,Z), and I(X,Y,Z) will be independent and unbiased.

Page 11: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 11

MD5 Algorithm

• Step 5 – output– The message digest produced as output is

A, B, C, D.

– That is, output begins with the low-order byte of A, and end with the high-order byte of D.

Page 12: MD5 - New Mexico Institute of Mining and Technologyinfohost.nmt.edu/~sfs/Students/HarleyKozushko/Presentations/MD5.pdf · 11/28/2003 Harley Kozushko 2 Opening • MD5 algorithm can

11/28/2003Harley Kozushko 12

Summary

• The MD5 algorithm is simple to implement, and provides a “fingerprint” or message digest of a message of arbitrary length.

• The difficulty of coming up with two messages with the same message digest is on the order of 2^64 operations.


Attacking MD5: Tunneling & Multi-Message Modification

Grow Basic Md5 Español (1)

MD5 Generation

The MD5 Message

Giuseppe Bianchi Hash/MD5 background; Message Authentication

SFS Newsletter

Musings on the Wang et al. MD5 Collision · – a 2128 complexity collision attack on HMAC-MD5 with unknown key; – a 242.2 complexity collision attack on HMAC-MD5 with known key;

A Meaningful MD5 Hash Collision Attack

MD5 ChosenPrefix Collisions on GPUs - SourceForgecryptslicerainb.sourceforge.net/Docs/bevand-md5-chosen... · 2009-08-23 · MD5 ChosenPrefix Collisions on GPUs Marc Bevand [email protected]

MD5 Considered Harmful Today - CCC

The MD5 hashing algorithm

HSRP MD5 Authentication...HSRP MD5 Authentication • FindingFeatureInformation,page1 • InformationAboutHSRPMD5Authentication,page1 • HowtoConfigureHSRPMD5Authentication,page2

MD5 1 MD5. MD5 2 MD5 Message Digest 5 Strengthened version of MD4 Significant differences from MD4 are o 4 rounds, 64 steps (MD4 has 3 rounds, 48

md5.uk.com file · Web viewmd5.uk.com

Md5 intro 27mar

SFS Presentation

SFS ACADEMY

Attacking MD5

MD5 Collisions

Sotirov (2012) flame md5

1251 Md5 Collisions 1.0

MD5 message-digest algorithm

MD5 File Validation - cisco.com · Information About MD5 File Validation MD5 File Validation Overview TheMD5FileValidationfeatureprovidesamechanismforuserstoverifythatsystemimagefilesarenot

MD5 File Validation - cisco.com · MD5 File Validation TheMD5FileValidationfeatureprovidesaCiscoIOSsoftwarecommandyoucanusetoensurefilevalidation usingtheMessageDigest5(MD5

232 md5-considered-harmful-slides

VHF/UHF DUAL BAND DIGITAL TRANSCEIVER DJ-MD5 · DJ-MD5 DJ-MD5. 2 Notice Introduction Lightning Utility software and instructions Any person is not safe outdoor during thunderstorm

Giai Thuat Md5 Message Digest

Hash Functions Md5

HSRP MD5 Authentication - cisco.com · HSRP MD5 Authentication • FindingFeatureInformation,page1 • InformationAboutHSRPMD5Authentication,page1 • HowtoConfigureHSRPMD5Authentication,page2

SFS Sfs Investor Presentation March 2016

MD5 Algorithm

Keygenning Md5

Configuring MPLS LDP Lossless MD5 Session AuthenticationThe MPLS LDP lossless MD5 session authentication feature allows keychains to be used to specify different MD5 keys to authenticate

Changes IAF MD5:2015 vs IAF MD5: 2019 - Accredia2019/11/02  · Changes IAF MD5:2015 vs IAF MD5: 2019 IAF MD5 changes_LOZ_08nov2019.docx Pag.3/24 IAF MD5:2015 IAF MD5:2019 Note: See

MD5 Generation Auto-Generated Slides To Visualize MD5 Hash Generation by Chris Fremgen