Ask Question
Computers & TechnologyComputers & Technology
22 November, 05:30

It was stated that the inclusion of the salt in the UNIX password scheme increases the difficulty of guessing by a factor of 4096. But the salt is stored in plaintext in the same entry as the corresponding ciphertext password. Therefore, those two characters are known to the attacker and need not be guessed. Why is it asserted that the salt increases security?

+4
Answers (1)
  1. 22 November, 05:44
    0
    Answer: Explanation:

    Salting alters the hash of a password so that it does not physically match the hash of another password. A salt and password are concatenated and processed with a cryptographic hash function. Salt prevents use of rainbow and hash tables to attacking and cracking passwords.

    For example, a user has the password, "password000" and is put through a SHA1 hash. In the password database, all of the users with the password "password000" will have the exact same hash, because of the nature of hashing functions. So, if an attacker breaches the database and brute force the password of the user mentioned above, he could look for all the hashes that match the original user's and would know their passwords are also "password000".

    By applying a salt, the password hashes would no longer be identical to one another, even though the actual password is still the same. This requires the attacker to go in and attempt to brute force the second password (which has a different salt), even though it may be the same as the first.

    In conclusion, it prevents an attacker from uncovering one password and subsequently uncovering multiple others.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question 👍 “It was stated that the inclusion of the salt in the UNIX password scheme increases the difficulty of guessing by a factor of 4096. But the ...” in 📗 Computers & Technology if the answers seem to be not correct or there’s no answer. Try a smart search to find answers to similar questions.
Search for Other Answers
You Might be Interested in
Read the statements below. Select "L" if the statement describes the Linux OS. Select "M" if the statement describes the Mac® OS. Select "W" if the statement describes the Windows® OS.
Answers (1)
How are some businesses capitalizing on social media at the time of someones death
Answers (1)
How do most database users perform data searches? by using forms by generating reports by viewing tables by performing calculations
Answers (1)
Which is a type of display monitor? HDD CPU SSD LCD
Answers (1)
What would you expect as the result of the code print (1 + 4) ? A. "1 + 4" B. print (1 + 4) C. five D. 5
Answers (1)
New Questions in Computers & Technology
What can you use to direct the viewer's attention in a particular direction or emphasize a certain object?
Answers (1)
On the 74ls74 d flip-flop, the clk input has a small triangle. the pr (preset) and clr (clear) inputs have a circle. what do these symbols mean?
Answers (1)
Why are dynamic flexibility tests NOT used as often as static flexibility tests? a. Dynamic flexibility tests involve more subjective measurements. b. Static flexibility tests are less expensive to perform. c.
Answers (1)
Where does a DNS server store the IP address and FQDNs for the computers within a domain? A. MX recordB. Canonical zoneC. SMTP recordD. Forward lookup zone
Answers (1)
Match each term to its definition. 1. outline a typeface without decorative extensions on the ends of its letters the difference between objects 2. color scheme 3.
Answers (1)
Home » Computers & Technology » It was stated that the inclusion of the salt in the UNIX password scheme increases the difficulty of guessing by a factor of 4096. But the salt is stored in plaintext in the same entry as the corresponding ciphertext password.
Sign Up Forgot Password?