Hashing has long been used as a means to verify data elements. Parity bits were originally used to 
confirm that a data transmission was received correctly and helped to detect any single-bit errors. However, parity didn’t add any value if multiple bits in the data had errors. As a result, a second trend then came about called CRC – Cyclic Redundancy Checks. These CRCs, based on polynomials, were used to detect errors in the data elements via a hash. Although this approach is more robust than parity bits, weaknesses in this algorithm also came to pass. A user could modify a file and easily sculpt the file’s contents to create the same CRC as the original file [5]. As such, we needed another way to verify our data files.
In comes hashing as we know it today. The modern hashing algorithms are designed to help verify the integrity of a data element. Yet, as our needs to verify file contents and data transmissions evolve, we continually realize that better solutions and algorithms are needed. Better hashing algorithms are constantly in the works. However, as the past would indicate, cryptographers and hackers alike continue to find issues with each successive algorithm that is released. As one algorithm is broken, another is developed – so the cycle continues. This paper will discuss the means and methods used to compromise these hashing functions and ways to protect yourself, and your data. Infosecwriters.com
From around the Web
- Windows Vista Service Pack 2 Latest Release Schedule
- Vista SP2: What is inside?
- NetWitness releases free version of security software
- Three Reasons Why Users Won’t Buy Into Security
- Automated security testing & its limitations
- Google Wants to Preinstall Chrome Browser on PCs
- Mozilla warns of Firefox China add on
- Firefox No Longer an Automatic Defense Against Browser Drive Bys
- Google patches Chrome file stealing bug
- Apple plays catch up, adds anti fraud safeguard to Safari
- Researchers find vulnerability in Windows Vista
- How to Use Network Behavior Analysis Tools
- The insider security threat in IT and financial services
- Windows 7 security: An overall improvement?
- Windows 7 UAC could be less of a nag