Hashing

Question 1

Hash

Answer 1

A one-way cryptographic function which takes an input and produces a unique message digest

Question 2

dont learn Message Digest 5 - MD5

Answer 2

Message Digest 5:

Algorithm that creates a fixed-length 128-bit hash value unique to the input file

Question 3

Collision

Answer 3

Condition that occurs when two different files create the same hash digest

Question 4

Secure Hash Algorithm - SHA

Answer 4

Secure Hash Algorithm

SHA1
Algorithm that creates a fixed-length 160-bit hash value unique to the input file

SHA2
Family of algorithms that includes SHA-224, SHA-256, SHA-348, and SHA512

SHA3
Family of algorithms that creates hash digests between 224-bits and 512- bits

Question 5

dont learn RACE Integrity Primitive Evaluation Message Digest: RIPEMD

Answer 5

RACE Integrity Primitive Evaluation Message Digest:

An open-source hash algorithm that creates a unique 160-bit, 256-bit, or 320-bit message digest for each input file

Question 6

Hash-based Message Authentication Code: HMAC

Answer 6

Hash-based Message Authentication Code:
Uses a hash algorithm to create a level of assurance as to the integrity and authenticity of a given message or file
• HMAC-MD5
• HMAC-SHA1
• HMAC-SHA256

Question 7

Hashing: Digital Signatures

Answer 7

Digital signatures prevent collisions from being used to spoof the integrity of a message

Digital signatures use either DSA, RSA, ECDSA, or SHA

Question 8

Code Signing

Answer 8

Uses digital signatures to provide an assurance that the software code has not been modified after it was submitted by the developer

Question 9

dont learn LANMAN (LM Hash)

Answer 9

Original version of password hashing used by Windows that uses DES and is limited to 14 characters

Question 10

dont learn NT LAN Manager Hash (NTLM Hash)

Answer 10

Replacement for LM Hash that uses RC4 and was released with Windows NT 3.1 in 1993

Question 11

dont learn NTLMv2

Answer 11

Replacement for NTLM Hash that uses HMAC-MD5 and is considered difficult to crack

NTLMv2 is used when you do not have a domain with Kerberos for authentication

Question 12

Hashing Attacks: Pass the Hash

Answer 12

hacking technique that allows an attacker to authenticate to a remote server or service by using the underlying NTLM or LanMan hash of a user’s password, instead of requiring the associated plaintext password as is normally the case. It replaces the need for stealing the plaintext password with merely stealing the hash and using that to authenticate with.

After an attacker obtains valid user name and user password hash values (somehow, using different methods and tools), they are then able to use that information to authenticate to a remote server or service using LM or NTLM authentication without the need to brute-force the hashes to obtain the cleartext password

Question 13

Hashing Attacks: Birthday Attack

Answer 13

Technique used by an attacker to find two different messages that have the same identical hash digest
▪ 99% chance of finding a matching birthday in a 57-person group
▪ 50% chance of finding a matching birthday in a 23-person group

Question 14

Increasing Hash Security: Key Stretching

Answer 14

the practice of converting a password to a longer and more random key for cryptographic purposes such as encryption

Question 15

Increase Hash Security: Salting

Answer 15

Adding random data into a one-way cryptographic hash to help protect against password cracking techniques

A “nonce” is used to prevent password reuse