You plan to use salt to defeat dictionary attack against an pair, in a computer
ID: 3782924 • Letter: Y
Question
You plan to use salt to defeat dictionary attack against an pair, in a computer system that uses a very simple hash in the authentication process = . Possible length of salt = 3. The hash is computed by binary addition of salt to the password, and then keeping only the last four bits of the result of the binary addition. The system stores triples of. Your answer must have three parts: What are the possible values of salt?, What is the hash of password + salt for salt =110? Explain the protocol for Authentication.Explanation / Answer
part 1 possible values for salts are
a)can we completely randomly generated by system
b)can be timestamp you your system
c)can be any thing ,which is random & unique.
part 2:hash of something is not unique ,it depends on hash function you used for hashing.i.e hash value is depends on hash function you are using.
for example password+salt==> 11011 +110=0100001==>0001
if hash function is md5 -->md5(0001)= ae2bac2e4b4da805d01b2952d7e35ba4
if hash function is sha0-->sha-1(0001)=7a6779700f09e1eafe9ad40e390f3a15b94dfa4b
and there are various hash function available like sha-0,sha-2,sha-3 etc
you can go at this site "sha1-online.com/" ,site has various hash generator for various hash function .Hava a look at this site.
part 3
An authentication protocol is security protocol designed to authenticate a client to server vice & versa.
Password in database is stored in encrypted form(like hash value).So even adminstrator don't have user password.
encrpted password is of no use.
Let suppose user want to login to server .He input his password ,this password is converted to hash value using some hash function ,and to server to compare with the hash value present in database.
If both values matched then user is authenticated.
Related Questions
drjack9650@gmail.com
Navigate
Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.