TM HIU MD5 V CC GII THUT M HA

MD5 (Message-Digest algorithm 5) l mt hm bm m ha vi gi tr bm l 128bit. Tng c xem l mt chun trn Internet, MD5 c s dng rng ri trong cc chng trnh an ninh mng, v cng thng c dng kim tra tnh nguyn vn ca tp tin. MD5 c thit k bi Ronald Rivest vo nm 1991 thay th cho hm bm trc , MD4 (cng do ng thit k, trc na l MD2). MD5 c 2 ng dng quan trng: 1/ MD5 c s dng rng ri trong th gii phn mm m bo rng tp tin ti v khng b hng. Ngi s dng c th so snh gia thng s kim tra phn mm bng MD5 c cng b vi thng s kim tra phn mm ti v bng MD5. H iu hnh Unix s dng MD5 kim tra cc gi m n phn phi, trong khi h iu hnh Windows s dng phn mm ca hng th ba. 2/ MD5 c dng m ha mt khu. Mc ch ca vic m ha ny l bin i mt chui mt khu thnh mt on m khc, sao cho t on m khng th no ln tr li mt khu. C ngha l vic gii m l khng th hoc phi mt mt khong thi gian v tn ( lm nn lng cc hacker).

Thut gii
MD5 bin i mt thng ip c chiu di bt k thnh mt khi c kch thc c nh 128 bits. Thng ip a vo s c ct thnh cc khi 512 bits. Thng ip c a vo b m chiu di ca n s chia ht cho 512. B m hot ng nh sau: - Trc tin n s chn bit 1 vo cui thng ip. - Tip l hng lot bit Zero cho ti khi chiu di ca n nh hn bi s ca 512 mt khong 64 bit . - Phn cn li s c lp y bi mt s nguyn 64 bit biu din chiu di ban u ca thng ip. Thut ton chnh ca MD5 hot ng trn mt b 128 bit. Chia nh n ra thnh 4 t 32 bit, k hiu l A,B,C v D. Cc gi tr ny l cc hng s c nh.

Sau thut ton chnh s lun phin hot ng trn cc khi 512 bit. Mi khi s phi hp vi mt b. Qu trnh x l mt khi thng ip bao gm 4 bc tng t nhau, gi l vng (round). Mi vng li gm 16 qu trnh tng t nhau da trn hm mt chiu F, php cng module v php xoay tri Hnh bn di m t mt qu trnh trong mt vng. C 4 hm mt chiu F c th s dng. Mi vng s dng mt hm khc nhau.

Hm bm MD5 (cn c gi l hm tm tt thng ip - message degests) s tr v mt chui s thp lc phn gm 32 s lin tip. Di y l cc v d m t cc kt qu thu c sau khi bm.

MD5("The quick brown fox jumps over the lazy dog") = 9e107d9d372bb6826bd81d3542a419d6
Thm ch ch cn mt tahy i nh cng lm thay i hon ton kt qu tr v:

MD5("The quick brown fox jumps over the lazy cog") = 1055d3e698d289f2af8663725127bd4b
Ngay c mt chui rng cng cho ra mt kt qu phc tp:

MD5("")

= d41d8cd98f00b204e9800998ecf8427e

Nhng L Hng
Bt c thut ton m ha no ri cng b gii m. Vi MD5, ngay t nm 1996, ngi ta tm thy l hng ca n. Mc d lc cn cha r rng lm nhng cc chuyn gia m ha ngh n vic phi a ra mt thut gii khc, nh l SHA-1 V ri gn y, gii m ho xn xao vi thng tin cc thut ton bn trong nhiu ng dng bo mt thng dng, nh ch k in t, cng... c l hng (trong c MD5). Mi chuyn bt u t nm, khi nh khoa hc my tnh ngi Php Antoine Joux pht hin ra mt l hng trong thut ton ph bin MD5, thng dng trong cng ngh ch k in t. Ngay sau , bn nh nghin cu ngi Trung Quc li pht hnh cng trnh nghin cu ch ra cch xuyn ph thut ton th hai c tn SHA-0. Tuy ch mi giai on nghin cu s b song nhng pht hin ny c th to iu kin k xu ci nhng chng trnh ca sau (backdoor) b mt vo trong m my tnh, hoc gi mo ch k in t. Tr phi mt thut ton mi, bo mt hn c xy dng v a vo s dng! Mt pht hin th ba, c n i v nh gi rt cao c cng b trong hi tho Crypto. Hai nh nghin cu Eli Biham v Rafi Chen ca Vin Cng ngh Israel din thuyt v cch nhn dng cc hnh thc tn cng vo chc nng bo mt ca thut ton SHA-0, mt thut ton c s h. Nhng l hng bo mt c cho l "nghim trng" bn trong thut ton SHA-0 v SHA-1, tu thuc vo mc chi tit ca phn trnh by, c th lm chn ng c ngnh bo mt. T trc ti nay, SHA-1 vn c coi l chun mc "vng" v thut ton. N c tch hp bn trong rt nhiu chng trnh thng dng nh PGP v SSL, c chng thc bi Vin Chun Cng ngh Quc gia v l thut ton ch k in t duy nht c C quan Chun Ch k S ca chnh ph M ph chun. C ba thut ton MD5, SHA-0 v SHA-1 u c gii khoa hc my tnh coi l "a chc nng". Chng c th nhn mi dng d liu u vo, t tin nhn email cho n ht nhn (kernel) ca h iu hnh, cng nh to ra mt du vn tay s duy nht. Ch thay i mt k t bt k bn trong file u vo cng to ra nhng du vn tay hon ton khc nhau. Cc ng dng bo mt u da vo tnh nng "du vn tay duy nht" ny lm nn. Tuy nhin, nu k tn cng c th to ra mt

du vn tay "Dolly" vi mt dng d liu u vo khc, du vn tay "sinh sn v tnh" ny s khin phn mm b gi backdoor nhn dng nhm. Kt qu l chng c th to ra ch k gi vt sch ti khon ngn hng ca ngi s dng khng may. Tt nhin, t rt lu, gii nghin cu hiu rng khng c thut ton m ho thc tin no l tuyt i an ton v bo mt. Tuy vy, h vn n lc thit k ra nhng thut ton m thi gian cn to ra mt du vn tay "Dolly" l v tn, vi hy vng k tn cng s nn lng. Th nhng nu nhng s h tng t nh ca SHA0 cng c tm thy trong SHA-1, iu ny ng ngha vi vic tc gi mo mt du vn tay s c y nhanh ln... 500 triu ln, hon ton trong tm tay ca mt mng my tnh tc cao. Tuy mc tc hi t trm trng hn song s h bo mt trong thut ton MD5 c l li gy hu qu ngay tc th. Sn phm my ch Apache Web ngun m ang s dng MD5 kim duyt nhng website c m ngun cha b chnh sa, t s an ton khi chy trong my. Tng t, s l c s d liu Solaris ca Sun Microsystems, vi kh nng m theo hng t nhn l "xc minh mt file ch thc ch khng phi phin bn b iu chnh h gc h thng bo mt''. L hng mi pht hin trong MD5 s cho php k tn cng to ra file gi mo ch trong vi gi vi mt my tnh t chun. "Gi y, ngi ta chng minh c cc thut ton ny c l hng. Trc khi k tn cng li dng khai thc c, n lc phi thi dn vic s dng MD5.'' - nh phn tch Hughes ca Vin Chun Cng ngh Quc gia nhn nh.