Using FPGAs to Parallelize Dictionary Attacks for Password Cracking

Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008) Pub Date : 2008-01-07 DOI:10.1109/HICSS.2008.484

Yoginder S. Dandass

{"title":"Using FPGAs to Parallelize Dictionary Attacks for Password Cracking","authors":"Yoginder S. Dandass","doi":"10.1109/HICSS.2008.484","DOIUrl":null,"url":null,"abstract":"Operating systems and data protection tools are employing sophisticated password derived encryption key techniques in order to encrypt data. Such techniques impose a significant computational burden on forensic tools that attempt dictionary attacks are requiring cryptographic hash generation functions to be called several thousand times for each password attempted. In order to improve throughput, forensic analysis tools are designed to operate in a distributed manner over a dedicated network of workstations. This paper describes an FPGA-based hardware implementation of the standard CPSK#5 technique published by RSA Laboratories for generating password-derived encryption keys. This is the most computationally demanding step required when performing a dictionary attack on modern password-protected systems. The initial FPGA implementation incorporates four password-derived encryption key generation units operating at a frequency of 150 MHz and is capable of processing over 510 passwords per second. The implementation's performance can be easily improved by incorporating additional key generation units.","PeriodicalId":328874,"journal":{"name":"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-01-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"21","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/HICSS.2008.484","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 21

Abstract

Operating systems and data protection tools are employing sophisticated password derived encryption key techniques in order to encrypt data. Such techniques impose a significant computational burden on forensic tools that attempt dictionary attacks are requiring cryptographic hash generation functions to be called several thousand times for each password attempted. In order to improve throughput, forensic analysis tools are designed to operate in a distributed manner over a dedicated network of workstations. This paper describes an FPGA-based hardware implementation of the standard CPSK#5 technique published by RSA Laboratories for generating password-derived encryption keys. This is the most computationally demanding step required when performing a dictionary attack on modern password-protected systems. The initial FPGA implementation incorporates four password-derived encryption key generation units operating at a frequency of 150 MHz and is capable of processing over 510 passwords per second. The implementation's performance can be easily improved by incorporating additional key generation units.

查看原文本刊更多论文

利用fpga并行字典攻击破解密码

操作系统和数据保护工具正在采用复杂的密码衍生加密密钥技术来加密数据。这些技术给试图进行字典攻击的取证工具带来了巨大的计算负担，因为字典攻击需要为每个尝试的密码调用数千次加密散列生成函数。为了提高吞吐量，法医分析工具被设计成在专用工作站网络上以分布式方式运行。本文描述了RSA实验室发布的用于生成密码衍生加密密钥的标准cpsk# 5技术的基于fpga的硬件实现。当对现代密码保护系统执行字典攻击时，这是计算要求最高的步骤。最初的FPGA实现包含四个密码衍生加密密钥生成单元，工作频率为150 MHz，每秒能够处理超过510个密码。通过合并额外的密钥生成单元，可以很容易地提高实现的性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)

自引率

0.00%

发文量