A Cryptographic Introduction to Hashing and Hash Collisions
Last Updated :
10 Sep, 2021
What is hashing?
Hashing is the process of converting any kind of data (usually passwords or installer files) into a fixed-length string. There are multiple types of hashes, but for this article, we will look only at the MD5 hash. MD5 is an example of a hashing method. For example, the MD5 hash of "hello" (without the quotes) is "5d41402abc4b2a76b9719d911017c592" (without the quotes). Similarly, the MD5 hash of "Geeks for Geeks" (without the quotes) is "5ee878924e0cb782e0729066a7d88832" (without the quotes). You'll notice that even though "Geeks for Geeks" is longer than "hello," their MD5 hashes are both the same length. This is what makes hashes vulnerable, and what we will discuss later in this article.
Why do we use hashes?
Hashes tend to have a few general use cases -
- Password security
- Ensuring correct downloads
- Image integrity verification
In this article, we will be looking at hashing through the lens of password security, as this is its most common use case.
Password Security :
Many times, a website needs to have a login form to authenticate its users. Usually, these websites have a lot of different users and need to store their login information in some kind of database. However, storing passwords as plaintext in a database is incredibly insecure.
For example, let's say a hacker managed to get into the following database of login information stored on a website -
Username
| Password
|
| admin | Admin_securep@$$w0rd |
| johnnyappleseed123 | ja.5923! |
| zadiben | nov151982 |
From this table, it becomes plainly obvious what each user's password is. Additionally, the hacker just gained access to the administrator account and can control several aspects of the website now! Instead, the website decides to store passwords using their MD5 hashes. Exploring this scenario, let's say the hacker manages to get into the website's new database. This is what they see -
| Username | Password Hash |
| admin | 865c5895f347413ca07c81e6c365cb31 |
| johnnyappleseed123 | a55805ec1caef94681bb07271659c887 |
| zadiben | ae93717757ecfb103847b6752b88ed36 |
Now, all the hacker can see is password's hash and theoretically cannot log in to any of these accounts. Without the actual password, the hash is (again, theoretically) useless to the hacker. But now, how will website be able to authenticate its users? Instead of checking the user's entered password against the database, the website will check the hash of the password the user entered. If that hash matches hash in database, user is authenticated! This is because the MD5 hash of "Admin_securep@$$w0rd" will always be "865c5895f347413ca07c81e6c365cb31" (more secure hashes like BCrypt use more complex hashing methods as well as more complex methods of comparing two hashes but, for simplicity's sake, we will stick with MD5 for now) and, though you can always go from the password to hash, it is (theoretically) incredibly difficult to go from the hash back to password.
The word "theoretically" has been thrown around a lot just now, and here's why.
Hash cracking :
Hash cracking entails taking a large wordlist or dictionary and hashing each word. Then, you check the hash of each word in the dictionary against the hash you are trying to crack. Once you have found a match, you have found your word! This is why it is not recommended to use common words as your password.
Referring to the example above, the hacker gained access to the website's login database and this was one of the lines in the database -
Username
| Password Hash
|
| pharrell157 | 5f4dcc3b5aa765d61d8327deb882cf99 |
Because the hacker is not giving up just because the passwords are hashed, they will run this hash through a hash cracker (which check against very commonly-used hashes) like this one. It's a simple matter of typing in hash "5f4dcc3b5aa765d61d8327deb882cf99," solving the reCaptcha, and getting a result -
crackstation.net cracking a common MD5 hash
Now, the hacker knows pharrell157's password is simply just "password" in a couple of seconds using a free online tool.
This is one of the main reasons an MD5 hash is not secure. Because it is an unsalted hash (unlike BCrypt), the same hash results from the same data every time. That is, the MD5 hash of "password" will always be "5f4dcc3b5aa765d61d8327deb882cf99.
In addition to just hash cracking (which is something to which every hash is vulnerable), MD5 is incredibly insecure for another, larger reason.
Hash collisions :
There are infinitely many possible combinations of any number of bits in the world. Therefore, there are infinitely many possible data that can be hashed. Note the definition of a hash above which states that a hash is always fixed-length. For example, the MD5 hash is always 128 bits long (commonly represented as 16 hexadecimal bytes). Thus, there are 2^128 possible MD5 hashes. While this is an extremely large number, it is certainly finite... though the number of possible passwords that can be hashed is infinite. What this means is that infinitely many different passwords have the same hash. This also means that if a hacker gains access to the MD5 hashes of passwords, they do not necessarily need to find the actual password, but something else which shares that hash. Because of recent innovations in technology, finding collisions in MD5 hashes is all but trivial. For more, see Marc Stevens's project, HashClash, or Corkami's GitHub repo on collisions.
What can we use instead of MD5?
Thankfully, now that MD5 does not provide the same level of security we might hope for, many new hashes have been created which can. For example, the SHA-256 (a.k.a. SHA-2) is more secure because it is 256 bits long instead of 128. Now, most websites use salted hashes like BCrypt which can create different hashes from the same password as long as there is a varying salt (or seed). MD5 hashes may still be used in digital forensics in some cases but it has mostly been succeeded by these more secure alternatives.
Similar Reads
What is Strong and Weak Collision Resistance in Cryptography?
Cryptographic hash functions are key tools in such fields as they permit the secure conversion of data into fixed-size digits. In the era of the internet when data security is very important, cryptography has a great significance in protecting non-public information. The two most vital characteristi
5 min read
How Hashing Algorithm Used in Cryptography?
A Hash Function (H) takes a variable-length block of data and returns a hash value of a fixed size. A good hash function has a property that when it is applied to a large number of inputs, the outputs will be evenly distributed and appear random. Generally, the primary purpose of a hash function is
12 min read
Introduction to Data Compression
In this article, we will discuss the overview of Data Compression and will discuss its method illustration, and also will cover the overview part entropy. Let's discuss it one by one. Overview :One important area of research is data compression. It deals with the art and science of storing informati
2 min read
Shamir's Secret Sharing Algorithm | Cryptography
Cryptography is a technique of securing information and communications through the use of codes so that only those person for whom the information is intended can understand it and process it. Thus preventing unauthorized access to information. The prefix “crypt†means “hidden†and suffix graphy mea
7 min read
PRG, PRF and PRP in Cryptography
Cryptography is the study and practice of techniques for secure communication in the presence of third parties called adversaries. It deals with developing and analyzing protocols that prevent malicious third parties from retrieving information being shared between two entities thereby following the
2 min read
Introduction to Crypto-terminologies
Cryptography is an important aspect when we deal with network security. 'Crypto' means secret or hidden. Cryptography is the science of secret writing with the intention of keeping the data secret. Cryptanalysis, on the other hand, is the science or sometimes the art of breaking cryptosystems. Both
4 min read
Encryption vs Digest in Cryptography
Encryption and Digest algorithms are used prominently in cryptography to protect the information which is always in high demand. Both are used as protection for data, however, their roles and capabilities of use are quite varied. Encryption replaces the normal or readable form of information (plaint
6 min read
Full domain Hashing with variable Hash size in Python
A cryptographic hash function is a special class of hash function that has certain properties which make it suitable for use in cryptography. It is a mathematical algorithm that maps data of arbitrary size to a bit string of a fixed size (a hash function) which is designed to also be a one-way funct
5 min read
What is N2 Problem in Cryptography?
The N2 problem emerges as a significant challenge in cryptography, protecting and safeguarding the information is most important. This problem is related to the issues of scalability and it arises when handling large volumes of data and also when processing numerous cryptographic operations at the s
8 min read
Hash Functions in System Security
Hash Function is a function that has a huge role in making a System Secure as it converts normal data given to it as an irregular value of fixed length. We can imagine it to be a Shaker in our homes. When we put data into this function it outputs an irregular value. The Irregular value it outputs is
4 min read