Help
Sign In »
Register Now!
Suppose Bob produced document m and h(m) using a hash function h which is known publicly.
(a) Bob sends {m, h(m)} to Alice over the Internet. Can Alice verify that m has not been tampered with (say during its transit over the Internet)? Explain.
My answer: I assume Alice can verify that m has not been tampered with, since h(m) should still compute correctly regardless of whether a replay attack has occurred or not. SO yes Alice can check message tampering.
Can anyone let me know if this is correct?
Welcome to ScienceForums.Net!
|
Welcome to ScienceForums.Net! We welcome science discussion at all levels — from beginners to researchers, covering topics from biology to computer science, and much more. Registration is fast and free, and allows you to post on the forums, so register now and join the discussions! After you've registered, come in and introduce yourself, or visit the forum index. If you need any help registering, posting, or if you just have some questions about our site, please feel free to contact us at staff at scienceforums dot net.
|
|
| Guest Message © 2012 DevFuse | |
Page 1 of 1
Simple cryptographic questions about Hash Functions
Rate Topic:
#2
1 February 2012 - 10:38 PM
Cap'n Refsmmat 
Mr. Wizard
You're correct that it doesn't protect against replay attacks. But can an attacker manipulate the message without a replay attack, and still produce a valid hash? Think about that for a bit.
- Posts: 11,435 | Joined: 04-January 04
Reply
#4
2 February 2012 - 12:14 AM
Cap'n Refsmmat
Mr. Wizard
If the hash function is known publicly, can't the malicious interceptor just hash the altered message? I could easily intercept {m, h(m)} and replace it with {n, h(n)}, where n is my evil replacement message.
- Posts: 11,435 | Joined: 04-January 04
- Reply
#6
2 February 2012 - 12:34 AM
Cap'n Refsmmat
Mr. Wizard
It's possible, but the point of cryptographic hash functions is that it is very, very difficult to generate a message that produces a given hash. That's called a preimage attack, and it basically requires brute-forcing it: try a bunch of messages until you get one which has the right hash. It takes a very, very long time.
- Posts: 11,435 | Joined: 04-January 04
- Reply
#7
2 February 2012 - 12:49 AM
ecy5maa
Quark
Fair enough. Thank you!!
Now if u can help me with the second part as well..i will be great full.
(a) Bob gives {m, h(m)}to Alice directly (face to face), can Alice be sure that there was no tampering by a third party?
Ans: Similar to the first part, i would think that even if Bob gave Alice the message face to face.....she would have no way of knowing what the original message was so cannot know if the message was tampered with by a third party. She would have to accept the message that she receives as the original message.
Now if u can help me with the second part as well..i will be great full.
(a) Bob gives {m, h(m)}to Alice directly (face to face), can Alice be sure that there was no tampering by a third party?
Ans: Similar to the first part, i would think that even if Bob gave Alice the message face to face.....she would have no way of knowing what the original message was so cannot know if the message was tampered with by a third party. She would have to accept the message that she receives as the original message.
- Posts: 16 | Joined: 21-November 11
- Reply
#8
2 February 2012 - 01:09 AM
Cap'n Refsmmat
Mr. Wizard
Yes. Of course, if she trusts Bob, and Bob says it's the correct message...
- Posts: 11,435 | Joined: 04-January 04
- Reply
Share this topic:
Page 1 of 1