Ask Question
Computers & TechnologyComputers & Technology
22 November, 05:30

It was stated that the inclusion of the salt in the UNIX password scheme increases the difficulty of guessing by a factor of 4096. But the salt is stored in plaintext in the same entry as the corresponding ciphertext password. Therefore, those two characters are known to the attacker and need not be guessed. Why is it asserted that the salt increases security?

+4
Answers (1)
  1. 22 November, 05:44
    0
    Answer: Explanation:

    Salting alters the hash of a password so that it does not physically match the hash of another password. A salt and password are concatenated and processed with a cryptographic hash function. Salt prevents use of rainbow and hash tables to attacking and cracking passwords.

    For example, a user has the password, "password000" and is put through a SHA1 hash. In the password database, all of the users with the password "password000" will have the exact same hash, because of the nature of hashing functions. So, if an attacker breaches the database and brute force the password of the user mentioned above, he could look for all the hashes that match the original user's and would know their passwords are also "password000".

    By applying a salt, the password hashes would no longer be identical to one another, even though the actual password is still the same. This requires the attacker to go in and attempt to brute force the second password (which has a different salt), even though it may be the same as the first.

    In conclusion, it prevents an attacker from uncovering one password and subsequently uncovering multiple others.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question 👍 “It was stated that the inclusion of the salt in the UNIX password scheme increases the difficulty of guessing by a factor of 4096. But the ...” in 📗 Computers & Technology if the answers seem to be not correct or there’s no answer. Try a smart search to find answers to similar questions.
Search for Other Answers
You Might be Interested in
My mom works from home selling her craft work online to people all over the world. She can do this from home because we have access to
Answers (2)
Hey so i was just trying out some game hacks so i took a paste from online and built it in my visual studio and then suddenly my computer was working or clicking on stuff on its own am i hacked?
Answers (1)
What is human data, a: your address, telephone number, email accountb: facial expressions, tone of voice energy levelc: percentage of apples sold at walmartd: color of your hair, your height and eye color
Answers (1)
Suppose Bob has an RSA Cryptosystem with a large modulus n for which the factorization cannot be found in a reasonable amount of time. Suppose Alice sends a message to Bob by representing each alphabetic character as an integer between 0 and 25 (i.
Answers (1)
MIDI is a A. technology based on placing brief digital recordings of live sounds under the control of a synthesizer keyboard. B. technology based on representing data in terms of measurable physical quantities. C.
Answers (1)
New Questions in Computers & Technology
How to enlarge email to full screen?
Answers (1)
All information is clearly identified and easy to find within the source
Answers (1)
Ssl (secure sockets layer) operates at which layer of the osi model
Answers (1)
Which amendment discussed in the unit do you think has the greatest effect on your life? Why?
Answers (1)
The data definition, as described in the data dictionary, tells users how each unit of data is defined in the database. Which of the following elements will be used to describe the data? Check All That Apply a.
Answers (1)
Home » Computers & Technology » It was stated that the inclusion of the salt in the UNIX password scheme increases the difficulty of guessing by a factor of 4096. But the salt is stored in plaintext in the same entry as the corresponding ciphertext password.
Sign Up Forgot Password?