Implementing-cryptography-using-python

Recommendations

Info

208 Chapter 7 ■ Message Integritypreselect one value. When it comes to exploring hashing and MACs, you endup with an attack that is more efficient than brute-forcing a target. The contextis when someone is randomly selecting values from a range (which is oneway of interpreting encryption, hashing, and authenticating). The attack treatsour birthdays as uniformly distributed values out of 365 days. The followingPython calculates the probability of students’ sharing a birthday within a specifiedclass size:import randomimport decimalclassSize = 23numTrials = 1000dupeCount = 0for trial in range(numTrials):year = [0]*365foundDupe = Falsefor i in range(classSize):newBDay = random.randrange(365)year[newBDay] = year[newBDay] + 1if year[newBDay] > 1:foundDupe = Trueif foundDupe == True:dupeCount = dupeCount + 1prob = float(dupeCount / (numTrials * 1.0))print('The probability of a shared birthday in a class of', classSize,'is', prob)The probability of a shared birthday in a class of 23 is 0.481.You can import itertools and get a more condensed version. In the followingPython script, you see that 35 students would offer closer to an 80% chance ofa birthday collision:import itertoolsfrom functools import reducedef alldifferent(k,n):'''The probability that k random selections from n possibilitiesare all different.'''assert(k<=n)nums = range(n,n-k,-1)dens = itertools.repeat(n)fracs = map(lambda x,y: float(x)/y, nums,dens)return reduce(float.__mul__, fracs)def collide(k,n):
Chapter 7 ■ Message Integrity 209'''The probability that, in k random selections from npossibilities,at least two selections collide.'''return 1 - alldifferent(k,n)print(collide(35,365))Crafting ForgeriesThe biggest failure of a MAC scheme is that a nefarious user can generate afalse message that the recipient accepts as authentic. These failures are madepossible due to the CBC-MAC/birthday paradox.Given a particular message, how many other messages would you expect tocreate message tags for before finding a collision? Imagine that you have foundtwo messages m1, m2 such that MAC K (m1) = MAC K (m2); then MAC K (m1 +x) = MAC K (m2 + x). To prove that the vulnerabilities exist, a team at Googlereleased the first concrete collision attack against SHA-1. The team has producedtwo files, shattered-1.pdf and shattered-2.pdf, that produce the same SHA-1tag. To learn more about the attack, review shattered.io.The Length Extension AttackNow that you have a little insight on how collisions happen, let’s examine theSHA-1 digest in a little more detail and then define a Python forgery for it. TheSecure Hash Algorithms are a family of cryptographic hash functions publishedby the National Institute of Standards and Technology (NIST) as a U.S. FederalInformation Processing Standard (FIPS), including SHA-0, SHA-1, SHA-2, andSHA-3. The SHA-1 is a 160-bit hash function, which is like the MD5 algorithm.The algorithm was designed by the NSA (National Security Agency) back in theearly 1990s. All hashing algorithms, including SHA-1, produce a fixed-lengthmessage digest. The output for SHA-1 is 20 characters no matter how long themessage was that was hashed.In general, you should use MACs such as HMAC-SHA-256 over those thatare not cryptographically secure such as MD5 and SHA-1. One of the primaryreasons is that the plain hash functions are susceptible to length extensionattacks. Many common hash functions use the Merkle-Damgård construction,which are built using a compression function, f, and preserve an internal state,s, which is initialized to a defined constant. Messages are produced by applyinga compression function to the current block and current state to compute anupdated internal state; the blocks are generated in fixed-sized blocks; i.e.,s i+1 = f(s j , b i ) . One of the consequences of this design, which allows us to exploitit, is that if you know the hash of an n-block message, you may be able to findthe hash of longer messages by applying the compression function for each
Page 2 and 3:
ImplementingCryptography UsingPytho
Page 4 and 5:
To Stephanie, Eden, Hayden, and Ken
Page 6 and 7:
viAbout the Authorbook, Shannon is
Page 8 and 9:
Contents at a GlanceIntroductionxvi
Page 10 and 11:
xiiContentsUsing Conditionals 16Usi
Page 12 and 13:
xivContentsPseudorandomness115Break
Page 14 and 15:
xviContentsInstalling and Testing W
Page 16 and 17:
xviiiIntroductionprivacy advocates.
Page 18 and 19:
CHAPTER1Introduction to Cryptograph
Page 20 and 21:
Chapter 1 ■ Introduction to Crypt
Page 22 and 23:
Page 24 and 25:
Page 26 and 27:
Page 28 and 29:
Page 30 and 31:
Page 32 and 33:
Page 34 and 35:
Page 36 and 37:
Page 38 and 39:
Page 40 and 41:
Page 42 and 43:
Page 44 and 45:
Page 46 and 47:
Page 48 and 49:
CHAPTER2Cryptographic Protocolsand
Page 50 and 51:
Chapter 2 ■ Cryptographic Protoco
Page 52 and 53:
Page 54 and 55:
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Page 62 and 63:
Page 64 and 65:
Page 66 and 67:
Page 68 and 69:
Page 70 and 71:
Page 72 and 73:
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Page 80 and 81:
Page 82 and 83:
66 Chapter 3 ■ Classical Cryptogr
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97:
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
CHAPTER4Cryptographic Mathand Frequ
Page 112 and 113:
Chapter 4 ■ Cryptographic Math an
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139:
Page 140 and 141:
Page 142 and 143:
Page 144 and 145:
Page 146 and 147:
Page 148 and 149:
Page 150 and 151:
Page 152 and 153:
Page 154 and 155:
CHAPTER5Stream Ciphers and Block Ci
Page 156 and 157:
Chapter 5 ■ Stream Ciphers and Bl
Page 158 and 159:
Page 160 and 161:
Page 162 and 163:
Page 164 and 165:
Page 166 and 167:
Page 168 and 169:
Page 170 and 171:
Page 172 and 173: Chapter 5 ■ Stream Ciphers and Bl
Page 186 and 187: CHAPTER6Using Cryptography with Ima
Page 188 and 189: Chapter 6 ■ Using Cryptography wi
Page 214 and 215: 200 Chapter 7 ■ Message Integrity
Page 238 and 239: 224 Chapter 8 ■ Cryptographic App
Page 260 and 261: CHAPTER9Mastering CryptographyUsing
Page 262 and 263: Chapter 9 ■ Mastering Cryptograph
Page 272 and 273:
Chapter 9 ■ Mastering Cryptograph
Page 274 and 275:
Page 276 and 277:
Page 278 and 279:
Page 280 and 281:
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
IndexSYMBOLS\ (backslash), 10- oper
Page 292 and 293:
Index ■ D-D 279CIA Triad, 35-36ci
Page 294 and 295:
Index ■ I-M 281hashlib module, 28
Page 296 and 297:
Index ■ Q-S 283Preneel, Bart, 145
show all

Implementing-cryptography-using-python

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?