Ethical Hacking Training at InfoSec Institute

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Computer Forensics Computer-Forensics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: SHA1 and MD5 of passphrases

from [Tim] Network Security [Permanent Link]
Subject: Re: SHA1 and MD5 of passphrases
Date: Sun, 20 Feb 2005 16:11:10 -0500 
I've seen several suggestions that for large data, taking both MD5 and 
SHA-1 hashes would increase the overall trust of the original data. My 
unrelated question is regarding hashes of smaller data such as passphrases.

Does storing both the SHA-1 and the MD5 of a passphrase weaken the strength 
of the passphrase? That is, if both hashes are available, does that 
introduce an additional avenue of attack on the original passphrase?



What you are talking about is pre-image attacks.  AFAIK, weak collision
resistance in a hash does not imply weak pre-image resistance.

In general, outside of this issue, multiple different hashes of your
passwords will be only as secure as your least secure hash.  For
instance, in some versions of windows, both your NT and your LM hash are
stored in the SAM.  (Someone, please correct me if I am wrong on any of
these details.)  Great, so we can crack the LM password and never attack
the NT password, if we can get the SAM.  Good thing Microsoft thought
that one through...

I think salted SHA1 for the time being is plenty secure for passwords.
The real problem with password hash storage isn't the hash anyway,
provided you are using a halfway decent hash... The big problem is how
the users select their passwords...

cheers,
tim

-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
[More with this subject...]


<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: SHA1 and MD5 of passphrases, kumquat
Next by Date:  Re: SHA1 showing it's age, bkfsec
Previous by Thread:  Re: SHA1 and MD5 of passphrases, kumquat
Next by Thread:  Re: SHA1 showing it's age, H Carvey
Indexes:  [Date] [Thread] [Top] [All Lists]