| 一种带有盐度值的安全哈希加密算法的设计与实现 |
| |
| 引用本文: | 李兴望,陈磊松,周小方.一种带有盐度值的安全哈希加密算法的设计与实现[J].漳州师范学院学报,2012(2):49-52. |
| |
| 作者姓名: | 李兴望 陈磊松 周小方 |
| |
| 作者单位: | 漳州师范学院计算机科学与工程系;漳州师范学院新闻传播系;漳州师范学院物理与电子信息工程系 |
| |
| 摘 要: | 当直接采用安全哈希算法对用户的密码进行加密时,虽然对密码执行了哈希运算,解决了在数据库中以明文的形式存储用户密码的潜在安全隐患问题,但是这种加密策略在面对字典、彩虹表攻击时就显得有些脆弱了,并没有达到更高的安全性.为了解决上述问题,本文设计并实现了一种带有盐度值的安全哈希加密算法.通过带有盐度值的哈希运算,可以使得生成的密文进一步随机化,进而使得攻击者需要为每个盐度值创建一条字典记录,这将使得攻击变得非常复杂,最终使攻击者利用字典,彩虹表进行攻击的成功率降低.
|
| 关 键 词: | 安全哈希算法 字典攻击 彩虹表攻击 安全性 盐度值 |
The Design and Implementation of a Safe Hash Encryption Algorithm with Salinity Value |
| |
| LI Xing-wang,CHEN Lei-song,ZHOU Xiao-fang.The Design and Implementation of a Safe Hash Encryption Algorithm with Salinity Value[J].Journal of ZhangZhou Teachers College(Natural Science),2012(2):49-52. |
| |
| Authors: | LI Xing-wang CHEN Lei-song ZHOU Xiao-fang |
| |
| Institution: | 1.Department of Science and Engineering,Zhangzhou Normal University,Zhangzhou,Fujian 363000; 2.Department of News,Zhangzhou Normal University,Zhangzhou,Fujian 363000;3.Department of Physical and Electronic Information Engineering,Zhangzhou Normal University,Zhangzhou,Fujian 363000,China) |
| |
| Abstract: | When Secure Hash Algorithm is directly adopted for users’ password encryption,the password Hash operations are executed and potential safety concerns over the user passwords stored in the database in plain text are solved,but in the face of the dictionary attacks and rainbow table attack,the encryption strategy appear vulnerable and no higher security is obtained.In order to solve the above problems,this paper puts forward a Hash data encryption algorithm with salinity value.Through the Hash operations with a salinity value,the generated ciphertext becomes further random,and the attacker need to create a dictionary record for each salinity value,making the attack very complex and finally reducing success rate of the attacking. |
| |
| Keywords: | Secure Hash Algorithm dictionary attack rainbow table attack safety salinity value |
| 本文献已被 CNKI 等数据库收录! |
|
