- MPPE l mt cng ngh m ha c pht trin bi Microsoft m ha cc lin kt point-to-point. Nhng kt ni ny c th c to trn mt ng dialup hoc trn mt VPN Tunnel.

. MPPE lm vic nh mt tnh nng con ca giao thc Microsoft Point-to-Point Compression (MPPC). MPPE s dng thut ton RC4 vi hai loi kha 40 v 128 bit. Tt c cc kha s c truyn di dng cleartext. RC4 l mt stream cipher; v vy, cc frame s c m ha v gii m u c kch thc nh nhau. Cisco trin khai giao thc MPPE cho php tng thch vi Microsoft v s dng tt c cc ty chn c th, bao gm ch Historyless. Ch Historyless c th lm tng thm thng lng thc s trong mi trng high-loss nh VPN.
Bt ngun phm MPPE thng tin t MS-CHAPv2 hot ng nh sau: 1. Hash 16-byte NT bm mt khu, p ng 24 byte t vic trao i MS-CHAPv2 , v mt hng s 27-byte (chui \ y l MPPE Master Key ") vi SHA. ct ngn c c mt cha kha master-master 16-byte. 2. S dng mt qu trnh xc nh, chuyn i cc kha master-master cho mt cp phm phin. i vi cc phm phin 40-bit, iu ny c thc hin nh sau: Hash cha kha master-master, 40 byte 0x00, mt hng s 84byte v 40 byte 0xF2 vi SHA. Ct ngn c c mt sn lng 8-byte. 2. Thit lp cc bc cao 24 bit ca 0xD1269E, kt qu trong mt kha 40-bit. Cc hng s ma thut khc nhau, ty thuc vo liu chnh c s dng m ha lu lng truy cp t my khch n my ch, hoc t my ch n clien 1. i vi cc phm 128-bit phin, qu trnh ny nh sau: 1. Hash cha kha master-master, 40 byte 0x00, mt hng s (84-byte ma thut lin tc 2 hoc 3) v 40 byte 0xF2 vi SHA. Ct ngn c c mt 16-byte u ra. Phn tch

Sa i ny c ngha l cc phm duy nht c s dng trong mi hng, nhng khng gii quyt c vn nghim trng ca cc kha yu. Cc phm c vn cn mt chc nng ca mt khu, v do khng cha d liu ngu nhin hn so vi mt khu. Ngay c mc d cc thut ton RC4 v mt l thuyt c th c 128-bit d liu ngu nhin, thc t mt khu c s dng to kha c t hn nhiu. iu ny c ni, bng cch s dng phm khc nhau trong mi hng vn l mt ci tin ln trong giao thc. Nhng ca trong cc hng s ma thut? Chng ti ang rt quan tm vi cc hng s ma thut nhng trong ngun gc quan trng thut ton cho cc phm xut khu suy yu. Giao thc ny lm suy yu kha RC4 40 bit bng cch sa cha cc bit cao ca 64-bit RC4 phm 0xD1269E. Nhng iu ny c v nguy him. N c bit rng, nu mt k th c php chn cc bit cao ca kha RC4, cc i th c th buc bn vo mt lp hc quan trng yu cho RC4 [Roo95, Wag95]. Do , nu MS-CHAP thit k | hoc NSA xut ph bnh ngi mun nhng mt ca sp trong giao thc, h c th khai thc s hin din ca cc hng s ma thut lm suy yu RC4. Chng ti khng bit liu cc kha trc xed vi 0xD1269E bt thng yu, nhng trong th nghim s b thng k ca chng ti, chng ti tm thy mt s ti sn ng ng ca cc phm ny li cho chng ta mt s nguyn nhn cho mi quan tm. cung cp cho hai v d: Cc php o thc nghim cho thy cc byte u tin ca u ra l thin v, cho cc phm bt u vi 0xD1269E. Cc byte keystream u tin v th hai trn cc gi tr 0x09 v 0x00 vi xc sut 0:0054 v 0:0060, tng ng. iu ny ng ch l cao hn 1 = 256 = 0:0039 xc sut bn mong mun t thut ton m ha tt. Nhng c tnh thng k ng lo ngi. Bi v khng c thng tin no c a ra trn nh th no 0xD1269E gi tr c la chn, mt c lo lng rng n cng c th l mt s la chn \ ca sp "m lc lng tt c 40-bit phm vo mt s lp chnh yu cho RC4. Chng ti

mi cc nh thit k MS-CHAP cng khai tit l lm th no tt c cc hng s ma thut c la chn v cung cp b tng m bo rng nhng gi tr o thut khng to ra bt k trapdoors n. Trong khi ch i , chng ti n nh mt cu hi m xc nh liu RC4 l an ton khi c s dng vi 0xD1269E key-tin t c nh.