Preimage Attack Information (Attack Preimage) @ Karr.net

Preimage Attack Information

In cryptography, the preimage attack is a classification of attacks on hash functions for finding a message that has a specific hash value.

There are two types of preimage attacks:

(First-) preimage attack: given a hash h, find a message m (a preimage) such that hash(m) = h.
Second-preimage attack: given a fixed message m1, find a different message m2 (a second preimage) such that hash(m2) = hash(m1).

These can be compared with a collision attack, which involves finding two arbitrarily different messages m1 and m2 such that hash(m2) = hash(m1).

Applied preimage attacks

For an ideal hash function, the fastest way to compute a first or second preimage is through a brute force attack.^{[citation needed]} For an n-bit hash, this attack has a time complexity 2ⁿ, which is considered too high for a typical output size of n=160 bits. If such complexity is the best that can be achieved by an adversary, then the hash function is considered preimage resistant.

Faster preimage attacks can be found by cryptanalysing certain hash functions, and are specific to that function. Some significant preimage attacks have already been discovered, but they are not yet practical. If a practical preimage attack is discovered, it would drastically affect many Internet protocols. In this case, "practical" means that it could be executed by an attacker in a meaningful amount of time for a meaningful amount of money. A preimaging attack that costs trillions of dollars and takes decades to preimage one desired hash value or one message is not practical; one that costs a few thousand dollars and takes a few weeks might be very practical.

All currently known practical or almost-practical attacks on MD5 and SHA-1 are collision attacks. In general, a collision attack is easier to mount than a preimage attack.

References

IETF RFC 4270: Attacks on Cryptographic Hashes in Internet Protocols

· · Cryptographic hash functions and message authentication codes (MACs)

Common functions	MD5 · SHA-1 · SHA-2

Functions	FSB · SHA-3 · ECOH · GOST · HAS-160 · HAVAL · LM hash · MDC-2 · MD2 · MD4 · N-Hash · RadioGatún · RIPEMD · Snefru · SWIFFT · Tiger · VSH · WHIRLPOOL · crypt(3) (DES)

SHA-3 finalists	BLAKE · Grøstl · JH · Keccak · Skein

MAC algorithms	DAA · CBC-MAC · HMAC · OMAC/CMAC · PMAC · VMAC · UMAC · Poly1305-AES

Authenticated encryption modes	CCM · CWC · EAX · GCM · IAPM · OCB

Attacks	Collision attack · Preimage attack · Birthday attack · Brute force attack · Rainbow table · Distinguishing attack · Side-channel attack

Misc.	Avalanche effect · Hash collision · Merkle–Damgård construction · Salt

Standardization	CRYPTREC · NESSIE · NIST hash function competition

· · Cryptography

History of cryptography · Cryptanalysis · Cryptography portal · Outline of cryptography

Symmetric-key algorithm · Block cipher · Stream cipher · Public-key cryptography · Cryptographic hash function · Message authentication code · Random numbers · Steganography

This cryptography-related article is a stub. You can help Wikipedia by expanding it. · ·

Categories: Cryptographic attacks |

The above information uses material from Wikipedia and is licensed under the GNU Free Documentation License.
Some facts may not have been fully verified for accuracy. [Disclaimers]
This page was last archived by our server on Wed Aug 3 00:41:12 2011.
Displaying this page or its contents does not use any Wikimedia Foundation's resources.
The owners of this site proudly support the Wikimedia Foundation.

More Information Results for "Preimage Attack"

[Hide]▼

'Preimage Attack' Images

[Hide]▲

or search for "preimage attack" in:	Web:	The Entire Web	Web Directory
	This Site:	Page Titles	This Site	Related Terms	Proximate Terms
	News:	Headlines	Events	Blogs
	Reference:	Encyclopedia	Dictionary	eTexts	Quotes
		Answers	Domain Details
	Multimedia:	Images	Videos	Audio
	People:	Discussion Groups	Social Networking
	Shopping:	General Merch.	Consumer Info		Classifieds