Security Analysis of MD5 algorithm in Password Storage
Hashing algorithms are commonly used to convert passwords into hashes which theoretically cannot be deciphered.This paper analyses the security risks of the hashing algorithm MD5 in password storage and discusses different solutions,such as salts and iterative hashing.We propose a new approach to using MD5 in password storage by using external information,a calculated salt and a random key to encrypt the password before the MD5 calculation.We suggest using key stretching to make the hash calculation slower and using XOR cipher to make the final hash value impossible to find in any standard rainbow table.
component MD5 Password Storage Security Data Security Dictionary attacks Rainbow Tables
Mary Cindy Ah Kioon ZhaoShun Wang hubra Deb Das
School of Computer and Communication Engineering University of Science and Technology(USTB), Beijing Beijing 100083, China
国际会议
太原
英文
706-709
2013-04-06(万方平台首次上网日期,不代表论文的发表时间)