Author md5crypt asks not to use his scrambler anymore
Author md5crypt Paul-Henning Kamp (Poul-Henning Kamp) published on a personal site a call for all developers to stop using this algorithm to encrypt (scramble) passwords.
Kamp says that for its time md5crypt was quite reliable protection for passwords, but since its release in 1995, a lot of time has passed. The latest tests show that on a commercially available GPU, you can iterate through options at a speed of 1 million per second, that is, MD5 is now vulnerable to brute force just as much as the DES-based crypt scrambler in 1995 was vulnerable. Any password of 8 characters can be cracked in a couple of days.
“As the author of md5crypt, I beg everyone without delay in switching to a more reliable password scrambler,” says Paul-Henning Kamp.
Kamp does not specifically say what to choose instead of md5crypt. He says that he is not a prominent cryptographic specialist and does not intend to write a new program to encrypt passwords. However, it can give a couple of recommendations. First of all, on the best GPU, the software algorithm should work no faster than 0.1 seconds.
')
Secondly, a certain parameter must be implemented for the environment so that the complexity and scrambling time can be subsequently increased by the administrator.
The algorithm should be based on repeated iterations with the data, using several complex one-way hash functions - MD5, SHA1, SHA2, Blowfish, and so on. Kamp says that you can use them all, just to "suck" the maximum amount of hardware resources from the hacker.
Any large website with more than 50 thousand users, Kamp believes, must design or configure its own unique algorithm consisting of standard hash functions, so that attackers have to optimize their techniques for each site.
However, with the latest recommendation, you can argue. The famous cryptographer Bruce Schneier in the book “Secrets and Lies” writes: “Anyone who creates his own encryption pattern is either a genius or a fool.” Given the number of websites in the world, it is difficult to imagine such a number of geniuses.
Kamp says that for its time md5crypt was quite reliable protection for passwords, but since its release in 1995, a lot of time has passed. The latest tests show that on a commercially available GPU, you can iterate through options at a speed of 1 million per second, that is, MD5 is now vulnerable to brute force just as much as the DES-based crypt scrambler in 1995 was vulnerable. Any password of 8 characters can be cracked in a couple of days.
“As the author of md5crypt, I beg everyone without delay in switching to a more reliable password scrambler,” says Paul-Henning Kamp.
Kamp does not specifically say what to choose instead of md5crypt. He says that he is not a prominent cryptographic specialist and does not intend to write a new program to encrypt passwords. However, it can give a couple of recommendations. First of all, on the best GPU, the software algorithm should work no faster than 0.1 seconds.
')
Secondly, a certain parameter must be implemented for the environment so that the complexity and scrambling time can be subsequently increased by the administrator.
The algorithm should be based on repeated iterations with the data, using several complex one-way hash functions - MD5, SHA1, SHA2, Blowfish, and so on. Kamp says that you can use them all, just to "suck" the maximum amount of hardware resources from the hacker.
Any large website with more than 50 thousand users, Kamp believes, must design or configure its own unique algorithm consisting of standard hash functions, so that attackers have to optimize their techniques for each site.
However, with the latest recommendation, you can argue. The famous cryptographer Bruce Schneier in the book “Secrets and Lies” writes: “Anyone who creates his own encryption pattern is either a genius or a fool.” Given the number of websites in the world, it is difficult to imagine such a number of geniuses.
Source: https://habr.com/ru/post/145454/
All Articles