http://wiki.cas.mcmaster.ca/index.php?feed=atom&target=Yuw7&title=Special%3AContributionsComputing and Software Wiki - User contributions [en]2026-04-08T20:28:43ZFrom Computing and Software WikiMediaWiki 1.15.1http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T03:26:11Z<p>Yuw7: </p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5", Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* "NIST hash function competition", Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/SHA-3 http://en.wikipedia.org/wiki/SHA-3]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
* Ptacek, "Enough With The Rainbow Tables: What You Need To Know About Secure Password Schemes", Matasano Chargen [http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/ http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/]<br />
* Davis, "Password Cracking and Time-Memory Trade Off", NewOrder March 13, 2005 [http://neworder.box.sk/newsread.php?newsid=13362 http://neworder.box.sk/newsread.php?newsid=13362]<br />
* "Dangers of MD5, Common Passwords", System Techs, November 10, 2009 [http://neworder.box.sk/newsread.php?newsid=13362 http://neworder.box.sk/newsread.php?newsid=13362] <br />
* Keane, "Building an MD5 Rainbow Table", Lamp Security February 24, 2009 [http://www.lampsecurity.org/node/17 http://www.lampsecurity.org/node/17]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 23:26, 12 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T03:25:44Z<p>Yuw7: </p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5", Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* "NIST hash function competition", Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/SHA-3 http://en.wikipedia.org/wiki/SHA-3]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
* Ptacek, "Enough With The Rainbow Tables: What You Need To Know About Secure Password Schemes", Matasano Chargen [http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/ http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/]<br />
* Davis, "Password Cracking and Time-Memory Trade Off", NewOrder March 13, 2005 [http://neworder.box.sk/newsread.php?newsid=13362 http://neworder.box.sk/newsread.php?newsid=13362]<br />
* "Dangers of MD5, Common Passwords", System Techs, November 10, 2009 [http://neworder.box.sk/newsread.php?newsid=13362 http://neworder.box.sk/newsread.php?newsid=13362] <br />
* Keane, "Building an MD5 Rainbow Table", Lamp Security February 24, 2009 [http://www.lampsecurity.org/node/17 http://www.lampsecurity.org/node/17]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 22:38, 12 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:38:26Z<p>Yuw7: </p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5, Wikipedia, Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
* Ptacek, "Enough With The Rainbow Tables: What You Need To Know About Secure Password Schemes", Matasano Chargen [http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/ http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 22:38, 12 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:35:57Z<p>Yuw7: /* References */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5, Wikipedia, Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
* Ptacek, "Enough With The Rainbow Tables: What You Need To Know About Secure Password Schemes", Matasano Chargen [http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/ http://www.matasano.com/log/958/enough-with-the-rainbow-tables-what-you-need-to-know-about-secure-password-schemes/]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 22:30, 12 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:30:51Z<p>Yuw7: </p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5, Wikipedia, Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 22:30, 12 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:30:36Z<p>Yuw7: </p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5, Wikipedia, Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 22:30, 12 April 2009 (EDT)--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:28:41Z<p>Yuw7: /* References */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5, Wikipedia, Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* Atwood, "Rainbow Hash Cracking", Coding Horror [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* Kuliukas, "How Rainbow Tables work" [http://kestas.kuliukas.com/RainbowTables/ http://kestas.kuliukas.com/RainbowTables/]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:25:36Z<p>Yuw7: /* '''Links''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* "Md5, Wikipedia, Wikipedia, April 10, 2009 [http://en.wikipedia.org/wiki/Md5 http://en.wikipedia.org/wiki/Rainbow_table]<br />
* [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* [http://kestas.kuliukas.com/RainbowTables/ How Rainbow Tables work]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T02:24:09Z<p>Yuw7: /* '''Links''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* "Rainbow table", Wikipedia, March 28, 2009 [http://en.wikipedia.org/wiki/Rainbow_table http://en.wikipedia.org/wiki/Rainbow_table] <br />
* [http://en.wikipedia.org/wiki/Md5 Md5]<br />
* [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* [http://kestas.kuliukas.com/RainbowTables/ How Rainbow Tables work]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T01:16:40Z<p>Yuw7: /* See Also */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* [http://en.wikipedia.org/wiki/Rainbow_table Rainbow table] <br />
* [http://en.wikipedia.org/wiki/Md5 Md5]<br />
* [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* [http://kestas.kuliukas.com/RainbowTables/ How Rainbow Tables work]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Public_Key_Authentication Public Key Authentication]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Bots_%26_Botnets Bots & Botnets]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Blowfish Blowfish]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Conventional_Encryption_Algorithms Conventional Encryption Algorithms]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T01:13:40Z<p>Yuw7: /* '''Links''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* [http://en.wikipedia.org/wiki/Rainbow_table Rainbow table] <br />
* [http://en.wikipedia.org/wiki/Md5 Md5]<br />
* [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* [http://kestas.kuliukas.com/RainbowTables/ How Rainbow Tables work]<br />
<br />
== See Also ==<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Information_security_awareness Information Security Awareness]<br />
* [http://www.cas.mcmaster.ca/wiki/index.php/Cryptography_in_Information_Security Cryptography in Information Security]<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T01:06:40Z<p>Yuw7: /* External Links */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* [http://en.wikipedia.org/wiki/Rainbow_table Rainbow table] <br />
* [http://en.wikipedia.org/wiki/Md5 Md5]<br />
* [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* [http://kestas.kuliukas.com/RainbowTables/ How Rainbow Tables work]<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
* [http://www.ethicalhacker.net/content/view/94/24/ The Ethical Hacker Network - Tutorial: Rainbow Tables and Rainbow Crack]<br />
* [http://project-rainbowcrack.com/ RainbowCrack (program) - Crack Hashes with Rainbow Tables]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T01:04:47Z<p>Yuw7: /* References */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* [http://en.wikipedia.org/wiki/Rainbow_table Rainbow table] <br />
* [http://en.wikipedia.org/wiki/Md5 Md5]<br />
* [http://www.codinghorror.com/blog/archives/000949.html Rainbow Hash Cracking]<br />
* [http://kestas.kuliukas.com/RainbowTables/ How Rainbow Tables work]<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T01:01:18Z<p>Yuw7: /* '''Links''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
* [http://en.wikipedia.org/wiki/Rainbow_table Rainbow table] <br />
* [http://en.wikipedia.org/wiki/Md5 Md5]<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:56:35Z<p>Yuw7: /* Double the Serving */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. So when a user first enters a clear-text message, the server will hash the message to make the first hashed-key, then it will hash it again and store the final key. By doing this, the attacker must now have two rainbow tables in order to determine the original message. The first table would be a clear-text message with associated hashed key table, while the other table would be a table of hashed-keys with its associated hashes. A full rainbow table of hashed-keys with its associated hashes would required 16 ^ 32 entries. This calculation was derived by knowing that a hashed-key is 32 bits in length and each bit is represented in hexadecimal (16 variations).<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:50:43Z<p>Yuw7: /* Frequently Changing the Order */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. This is perhaps the easiest method, however it places more responsibility on the user's end.<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:49:31Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:49:11Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
== Adding salt==<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:48:57Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:48:47Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:48:28Z<p>Yuw7: /* Frequently Changing the Order */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
=== Frequently Changing the Order ===<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:48:16Z<p>Yuw7: /* Adding to the Menu */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding more items to the menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. From the earlier example, it allowed each letter to have 62 different possibilities. If we were to allow a user to enter three more character, say ~, ! and @, we can calculate that for 7 letter words, there are 4,902,227,890,625 possibilities. Comparing this to the our example, we can see that by allowing an addition 3 symbols, it increases the variations by 500 billion different possibilities.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:41:41Z<p>Yuw7: /* Using Variety */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slower than MD5, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:40:31Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:40:19Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:38:26Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:37:52Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes, assuming that the clear-text associated with the hashed key is insgnificant.<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'''Explanation''': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br><br />
Continuing this trend to 7 characters, we get the last entry in the table.<br><br />
<br />
'''Cost''': With a terabyte of memory costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5,200 in order to store the rainbow table. With 52 terabytes of information stored, it would still take a decent amount of time to search through each entry.<br><br><br />
<br />
'''Conclusion''': We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:32:09Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
'Explanation': In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br><br />
<br />
Conclusion:<br />
We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:31:52Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br><br />
<br />
Conclusion:<br />
We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:31:26Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
Conclusion:<br />
We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:30:46Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 384.4 millisecond<br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 23,832.8 millisecond = 23.83 seconds<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 24.63 minutes<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 25.45 hours<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 65.74 days<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 51.25 tb || 11.17 years<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
Conclusion:<br />
We can see from the table that as a rainbow table holds more variations, both the amount of room and compilation time increases exponentially.<br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:23:32Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || 6.2 millisecond<br />
|-<br />
| 2 || 62x62 = 3,844 || 61504 bytes ~ 60 kb || 38440 millisecond = 38.44 second <br />
|-<br />
| 3 || 62^3 = 238,328|| 3.6 mb || 2,383,280 millisecond = 39.72 miuntes<br />
|-<br />
| 4 || 62^4 = 14,776,336|| 225.5 mb || 147,763,360 millisecond = 41.05 hours<br />
|-<br />
| 5 || 62^5 = 916,132,832|| 13.65 gb || 9,161,328,320 = 106 days<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| 846.39 gb || 18 years<br />
|-<br />
| 6 || 62^7 = 35,216,114,606,208|| 846.39 gb || 18 years<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 0.1 millisecond = 6.2 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 0.1 millisecond = 384.4 millisecond<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:04:19Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || 992 bytes || ###<br />
|-<br />
| 2 || 62x62 = 3,844 || 6154 bytes ~ 60 kb || ###<br />
|-<br />
| 3 || 62^3 = 23,8328|| ### || ###<br />
|-<br />
| 4 || 62^4 = 14,776,336|| ### || ###<br />
|-<br />
| 5 || 62^5 = 916,132,832|| ### || ###<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| ### || ###<br />
|-<br />
| 7 || 62^7 = 3,521,614,606,208|| ### || ###<br />
|-<br />
| 8 || 62^8 = 218,340,105,584,896|| ### || ###<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 10 millisecond = 620 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 10 millisecond = 38440 millisecond = 38.44 seconds<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-13T00:02:46Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ### || ###<br />
|-<br />
| 2 || 62x62 = 3,844 || ### || ###<br />
|-<br />
| 3 || 62^3 = 23,8328|| ### || ###<br />
|-<br />
| 4 || 62^4 = 14,776,336|| ### || ###<br />
|-<br />
| 5 || 62^5 = 916,132,832|| ### || ###<br />
|-<br />
| 6 || 62^6 = 56,800,235,584|| ### || ###<br />
|-<br />
| 7 || 62^7 = 3,521,614,606,208|| ### || ###<br />
|-<br />
| 8 || 62^8 = 218,340,105,584,896|| ### || ###<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 10 millisecond = 620 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 10 millisecond = 38440 millisecond = 38.44 seconds<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:57:49Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 10 millisecond = 620 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 10 millisecond = 38440 millisecond = 38.44 seconds<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces. With a better processor, each hash would take less time to calculate, thus reducing table compilation time.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:56:07Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions*:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9) = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 10 millisecond = 620 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 10 millisecond = 38440 millisecond = 38.44 seconds<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:54:28Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
</ol><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br><br />
Explanation: In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes and a compile time of 62 x 10 millisecond = 620 millisecond. <br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes and a compile time of 3844 x 10 millisecond = 38440 millisecond = 38.44 seconds<br><br />
Continuing this trend to 8 characters, we get the last entry in the table.<br><br />
<br />
Cost:<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:48:53Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br><br />
Assumptions:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
</ol><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:48:33Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
Assumptions:<br />
<ol><br />
<li> One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
<li> Each hash takes 10 milliseconds to compute.<br />
<li> One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
</ol><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:45:26Z<p>Yuw7: /* Time-Memory Tradeoff */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|'''Time required to compile table'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:41:06Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:38:23Z<p>Yuw7: </p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
<br />
<br />
== See Also ==<br />
<br />
<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:37:41Z<p>Yuw7: /* How it works */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. MD5 hashing algorithm is particularly fast to calculate, normally in the order of milliseconds. However, when there are billions and billions of variations, the milliseconds quickly accumulate to days and months. So, by computing a large number of variations once and storing these values into a table, a user can just tell a computer to find a match for a particular hash key which eliminates the need to calculate any hashes. The only problem the user faces now is the amount of room required to store all this information. The principle of sacrificing memory for less computing time is called time-memory tradeoff, which will be explained in the later sections. If the hashed key is not found in the rainbow table, it means message rainbow table did not contain clear text message. This will force the attacker to either build a bigger rainbow table, brute-force it or give up.<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:13:35Z<p>Yuw7: /* How it works */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to [http://en.wikipedia.org/wiki/Brute_force_attack brute-force attack] the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. When brute-force is used, a non-matching hash that was calculated would just be discarded, forcing the user to recalculate the discarded hash again the next time they stumble upon a new hash key.<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:10:19Z<p>Yuw7: /* How it works */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they can try to retrieve the corresponding clear text message by getting a computer to brute-force attack the hashed key. However, for a message length of 7 characters, this may take hundreds of days; at which time, the message may no longer be relevant. When brute-force is used, a non-matching hash that was calculated would just be discarded, forcing the user to recalculate the discarded hash again the next time they stumble upon a new hash key.<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T23:01:14Z<p>Yuw7: /* What are Rainbow Tables? */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This is known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they try and retrieve the corresponding clear text message by getting a computer to brute-force attack the hashed key. However, this can get very time consuming<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T22:58:19Z<p>Yuw7: /* What is MD5? */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
Message-Digest 5 (MD5) hashing is an algorithm which converts a message into a 128-bit encrypted key, often called a hashed key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they try and retrieve the corresponding clear text message by getting a computer to brute-force attack the hashed key. However, this can get very time consuming<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T03:59:10Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
MD5 hashing is an algorithm which converts a password into an encrypted key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they try and retrieve the corresponding clear text message by getting a computer to brute-force attack the hashed key. However, this can get very time consuming<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
=== Adding salt===<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
=== Using Variety ===<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
=== Adding to the Menu ===<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
=== Double the Serving ===<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T03:56:49Z<p>Yuw7: /* '''Solutions''' */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
MD5 hashing is an algorithm which converts a password into an encrypted key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they try and retrieve the corresponding clear text message by getting a computer to brute-force attack the hashed key. However, this can get very time consuming<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
== Adding salt==<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
== Using Variety ==<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
== Adding to the Menu ==<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
== Double the Serving ==<br />
Another solution is to hash a hashed key. By hashing a hashed key, it increases the difficulty in finding the original message by many factors.<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T03:35:54Z<p>Yuw7: /* How it works */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
MD5 hashing is an algorithm which converts a password into an encrypted key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Each time a cracker obtains a hashed key, they try and retrieve the corresponding clear text message by getting a computer to brute-force attack the hashed key. However, this can get very time consuming<br />
<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. <br />
<br />
<br />
<br />
<br />
The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
== Adding salt==<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
== Using Variety ==<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
== Adding to the Menu ==<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7http://wiki.cas.mcmaster.ca/index.php/MD5_Rainbow_TablesMD5 Rainbow Tables2009-04-12T03:17:28Z<p>Yuw7: /* What are Rainbow Tables? */</p>
<hr />
<div>[[Image:hash_table_example.jpg|thumb|500px| An example of a hash table containing only 1 character]]<br />
<br />
A popular way of storing passwords for many websites, forums and other applications are through the use of MD5 hashing. When a user registers for a subscription and enters a password, that password is more than like passed through a MD5 hash function which outputs an encrypted key. This encrypted key is stored on a server, to keep a record of it for log in purposes. The next time the user tries to log in, they enter a password and this password is once again passed through the MD5 hash function and generates a temporary encrypted key. This temporary key is compared to the encrypted key that is previously stored and if they match then the server grants this user access. If the server is compromised, the attacker will only be able to retrieve a collection of hashed keys instead of the actual password of the users. However, through the use of MD5 rainbow tables, it allows the attacker to retrieve the original passwords as we shall see.<br />
<br />
== What is MD5? ==<br />
MD5 hashing is an algorithm which converts a password into an encrypted key. This hashing method works as a one way hash, meaning that original password is not retrievable from the hashed key alone. It has been implemented by many applications because it is a standard in RFC 1321. Recently, researchers have discovered that MD5 hashed keys were not collision proof. This means that two different passwords, when hashed together can result in the same hashed key.<br />
<br />
----<br />
<br />
== What are Rainbow Tables? ==<br />
Rainbow tables are tables which contain a hashed key and the clear text message/password associated with the hashed key. This essentially makes a rainbow table a look up table, which allows an attacker to discover original passwords associated with a hashed key in a very short amount of time given that the rainbow table contains the hashed key. As one can guess, the more variations of hashed keys that are stored in a rainbow table, the more memory this table will require and the more time a computer would require to compile this table. This known as the time-memory trade off.<br />
<br />
----<br />
<br />
== How it works ==<br />
Since the MD5 algorithm is just one single function that transforms a password to an encrypted hashed key after passing an algorithm, one can make a complete table of all the different combination. The main key to using rainbow tables instead of cracking on the fly is that rainbow tables offer a time-memory tradeoff. Cracking on the fly may take a very long time with a much lower percentage of success. However, by having all the combination that are possible in a table, one can just compare the stolen hashed key to find a match in the table and they will have discovered the original password.<br />
<br />
----<br />
<br />
<br />
== Time-Memory Tradeoff ==<br />
Time-memory trade off is the act of sacrificing memory in order to reduce computation time or vice-versa. For our particular application of rainbow tables, we can demonstrate this idea by the following example:<br />
<br />
One MD5 Hash entry in a rainbow table = 128 bits = 16 bytes<br><br />
One character can have (26 uppercase letters) or (26 lowercase letters) or (10 numbers 0-9)* = 62 choices<br><br />
In order for a rainbow table to store all the variations of 1 character with all the combination's, it would require 16 bytes x 62 = 992 bytes.<br><br />
If we increase it to 2 characters, it would be 62 choices for the first letter and 62 choices for the second letter, giving a total of 3844 different choices.<br><br />
To store this combination, it would require 3844 * 16 bytes = 61504 bytes ~ 60 kilobytes<br><br />
Continuing this trend to 6 characters, we get 908803769344 bytes = 846.39 Gigabytes<br><br />
<br />
{| border="1" cellpadding="2" align="center"<br />
|+'''Various Rainbow Table Sizes with Associated Number of Characters'''<br />
|-<br />
|width="100"|'''Number of Characters''' <br />
|'''Total number of variations'''<br />
|'''Total memory required'''<br />
|-<br />
| 1 || 62 || ###<br />
|-<br />
| 2 || 62x62 = 3844 || ###<br />
|-<br />
| 3 || 62^3 = 238328|| ###<br />
|}<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
With a terabyte of space costing around 100 dollars in today's market, a rainbow table with all combination's up to 6 character can easily be stored.<br><br />
However, if we increase the number of characters to just 1 more, we see that it will require 51.25 Terabytes. Costing about $5200 in order to store it.<br><br />
<br />
[*]This is a very general scenario, most online applications allow special symbols such as @,# etc and even spaces.<br />
----<br />
<br />
= '''Solutions''' =<br />
<br />
== Adding salt==<br />
Salt, in security, is the act of appending a number of bits (random or defined) to a password to increase its length. For every salt bit we add to the password, the number of raw brute-force attempts required increases by a factor of 2. So say we add 32 salt-bits to a password, it increases the attempts required to find the original password to (4,294,967,296) x (length of original password).<br />
<br />
----<br />
<br />
== Using Variety ==<br />
Many researchers agree that MD5 hashing algorithm is full of flaws and that it is not longer secure enough. So instead of using MD5, people can employ a different hashing algorithm such as MD6, SHA or wait for SHA-3 to be completed. As mentioned earlier, the time required for a rainbow table depends heavily on the hashing algorithm. So by choosing an algorithm that is slow, even a fast computer will take a long time to compile a table with a modest amount of variations.<br />
<br />
----<br />
<br />
== Adding to the Menu ==<br />
For every symbol that a system allows a user to use, it increases the variations in a rainbow table by a factor. For example, if a system only allows lower-case alphabet letters as passwords and limited to 6 letters, then a rainbow table only requires 26^6 = 308,915,776 entries. If a similar system allows the use of an extra symbol (!,@,# etc) then the calculation would be 27^6 = 387,420,489, which is an increase of nearly 80 million. As mentioned before, most systems now use upper-case, lower-case and numbers, required passwords to be of length at least 8. This would require:<br />
<br />
<math>62^{8} \times 2.18340106 \times 10^{14}<math><br />
<br />
As we can see, this number is still not much problem for a decent computer with enough space.<br />
<br />
== Frequently Changing the Order ==<br />
By imposing a security policy which forces users to modify sensitive information, such as passwords, on a frequent basis, then there may be a chance that by the time an attacker finds a match in their rainbow table, the information that the attacker holds is no longer relevant. <br />
<br />
<br />
----<br />
<br />
='''Links'''=<br />
== References ==<br />
<br />
----<br />
<br />
== See Also ==<br />
<br />
----<br />
<br />
== External Links ==<br />
<br />
* [http://www.miraclesalad.com/webtools/md5.php MD5 Hash Generator]<br />
* [http://www.tmto.org/search/ Database with 160Gb Rainbow Table]<br />
<br />
----<br />
--[[User:Yuw7|Yuw7]] 20:14, 7 April 2009 (EDT)</div>Yuw7