This page (revision-3) was last changed on 29-Nov-2024 16:16 by -jim

This page was created on 29-Nov-2024 16:16 by unknown

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note
3 29-Nov-2024 16:16 1 KB -jim to previous
2 29-Nov-2024 16:16 1 KB -jim to previous | to last
1 29-Nov-2024 16:16 1 KB unknown to last

Page References

Incoming links Outgoing links
Length extension attack
Length extension attack

Version management

Difference between version and

At line 1 changed 2 lines
!!! Overview [1] [2]
[{$pagename}] where an [attacker] can use [Hash](message1) and the length of message1 to calculate [Hash](message1 ‖ message2) for an [attacker]-controlled message2.
!!! Overview
[{$pagename}] is an [Attack] done by an [attacker] when he can use [Hash](message1) and the length of message1 to calculate [Hash](message1 ‖ message2) for an [attacker]-controlled message2.
At line 4 added one line
At line 5 changed one line
[{$pagename}] can be used to sign a message when a Merkle–Damgård based [hash] __is misused__ as a [Message Authentication Code], allowing for inclusion of extra information at the end of the current [message].
[{$pagename}] can be used to [sign|Digital Signature] a [message] when a Merkle–Damgård based [hash] __is misused__ as a [Message Authentication Code], allowing for inclusion of extra information at the end of the current [message].
At line 7 changed one line
[{$pagename}] can be done on hashes with construction H(secret ‖ message) when [message] and the length of secret is known. [Algorithms] like [MD5], [SHA-1], and [SHA-2] that are based on the [Merkle-Damgard construction] are susceptible to this kind of [attack]. '
[{$pagename}] can be done on hashes with construction H(secret ‖ message) when [message] and the length of secret is known. [Algorithms] like [MD5], [SHA-1], and [SHA-2] that are based on the [Merkle-Damgard construction] are susceptible to this kind of [attack].
At line 10 changed one line
[HMAC] hashes are not prone to [{$pagename}].
[HMAC] hashes are not prone to [{$pagename}] \\AND\\
[SHA-3] [algorithm] is not susceptible to the [{$pagename}]
At line 13 removed 5 lines
[SHA-3] [algorithm] is not susceptible to the [{$pagename}]
This page (revision-3) was last changed on 29-Nov-2024 16:16 by -jimTop