hash - Second preimage resistance using MD4 AND MD5 -

-

let's have following:
- string: str
- md4 hash of string: md4(str)
- md5 hash of string: md5(str)

md4 , md5 cryptographically "broken" algorithms, meaning not difficult to:

1) find str_2 md4(str) = md4(str_2) (i.e. attack on md4)
2) find str_3 md5(str) = md5(str_3) (i.e. attack on md5)

how hard to:

3) find str_4 md4(str) = md4(str_4) and md5(str) = md5(str_4)
(i.e. attack on md4 , md5 simultaneously)?

obvious (probably not efficient) way to:

1) find string str md4(str) = md4(str)
2) check if md5(str) = md5(str)
3) if so, we're done. if not, go step 1 , satisfy step 1 different string.

above algorithm doesn't seem fast me (or it?). true string hashed both md4 , md5 quite safe second preimage attack?

edit:
(1) main concern enhancing second pre-image resistance

(2) main motivation not use outdated hashes today's applications. rather, two-fold: first, anticipating day hashes considered secure today become broken. example, if use sha-2, day becomes broken same day become worried data. if use sha-2 , bcrypt, if both become individually broken, may still unfeasible defeat second pre-image resistance of concat(sha2_hash, bcrypt_hash). second, want reduce chance of accidental collision (server thinks 2 inputs same because 2 hashes happens same)

this sort of thing doesn't improve security as think. resulting (m+n) bit value weaker output of hash natively generates (m+n) bits of output. answer on crypto.stackexchange.com goes little deeper if want know more details.

but bottom line when constructing hash function output concatenation of other hash functions, output is, @ best, strong strongest constituent hash.

and have ask why use md4 or md5 , go trouble begin with? use sha-3. if want feel "extra safe" calculate margin of safety feel comfortable with, , increase percentage. is, if feel 384 bits enough, go 512.

so, more information trying do, use file contents generate both "quick checksum" value , generate unique locator/identifier file @ same time still think choosing single hash better approach.

if insist on using 2 hash functions, submit instead of concatenating 2 hashes better approach instead use hmac using 2 different hash functions/algorithms. please note, not have rigorous proof works better, or construct won't generate horrible output. take grain of salt:

let h1 , h2 2 cryptographically secure hash functions, , let p input data. then, hash & file identifier file given construct:

hmac (k,p) = h1((kgen(p) ⊕ pad1) ∥ h1((kgen(p) ⊕ pad2) ∥ p)))

where

kgen (p) = h2(p)

Comments

Post a Comment

Popular posts from this blog

c++ - Creating new partition disk winapi -

-
i'am trying create new partition , mount volume new, thought createfile let me this, code : lpctstr lpfilename=l"\\\\.\\device\\harddisk0\\partition3"; handle handl=createfile( lpfilename, generic_read | generic_write, file_share_read | file_share_write, null, create_always, file_attribute_normal, null ); if (handl==invalid_handle_value) { qdebug()<<"handl invalid"<<" error"<<getlasterror();} bool success = definedosdevice(ddd_raw_target_path,l"i:",l"\\device\\harddisk0\\partition3"); if(!success) qdebug()<<" definedosdevice failed "<<getlasterror(); bflag = getvolumenameforvolumemountpoint( l"i:\\", // input volume mount point or directory /** u in dir
Read more

Android Prevent Bluetooth Pairing Dialog -

-
i'm developing internal application uses bluetooth printing. want bluetooth pairing occur without user input. have managed working trapping android.bluetooth.device.action.pairing_request broadcast. in broadcast receiver call setpin method, , pairing works ok, bluetoothpairingdialog displayed second or two, disappears - see link below. https://github.com/android/platform_packages_apps_settings/blob/master/src/com/android/settings/bluetooth/bluetoothpairingdialog.java since broadcast non-ordered, can't call abortbroadcast() , , wondering if there other way prevent pairing dialog appearing. can hook window manager in way? i haven't been able come way without modifying sdk. if you're oem, it's easy (i'm on 4.3): in packages/apps/settings/androidmanifest.xml, comment intent filter pairing dialog: <activity android:name=".bluetooth.bluetoothpairingdialog" android:label="@string/bluetooth_pairing_request"
Read more

VBA function to include CDATA -

-
i have following function include cdata: function cdatasection() dim objdom domdocument dim objkmlrootelement ikmldomelement dim objkmlelement ikmldomelement dim cdata ikmldomcdatasection set objdom = new domdocument set objkmlrootelement = objdom.createelement("balloonstyle") objdom.appendchild objkmlrootelement set objkmlelement = objdom.createelement("text") objkmlrootelement.appendchild objkmlelement set cdata = objdom.createcdatasection("text") cdata.data = "<![cdata[<b>latitude = $[latitude]</b>?]]>;" end function when run above, getting error "user defined data type not found" function. yes ripster says find library reference. vba window tools>references for list of relevant references see... http://msdn.microsoft.com/en-us/library/windows/desktop/ms763701%28v=vs.85%29.aspx however, if have hard time tracking down reference, replace dim sta
Read more